Commit Graph

87 Commits

Author SHA1 Message Date
jmg
a25e3add85 Enable the automatic creation of a certificate (if one does not exists)
and enable the usage by sendmail if sendmail is enabled.  Include and
document knobs to disable this feature and also set the Common Name of
the certificate created.

As the certificate is signed w/ a discarded key, it only helps prevent
Eve, but not Malory from knowing the contents of the emails.

This means that new installs (and people that use the updated freebsd.mc
file) will automaticly have STARTTLS enabled allowing incoming email to
be encrypted in most cases.

Reviewed by:	gshapiro
MFC after:	3 days
Security:	Yes, please.
2013-10-19 18:51:06 +00:00
gshapiro
e106d00d68 Minor changes to force commit these files so new freebsd*.cf files are
built to use the new sendmail-8.14.6/cf tree.

MFC after:	4 days
2013-04-21 17:11:45 +00:00
peter
ae464bd0f7 Not using the full domain was a really bad idea. 2013-01-06 19:25:42 +00:00
gshapiro
40a342aed7 Minor changes to force commit these files so new freebsd*.cf files are
built to use the new sendmail-8.14.6/cf tree.

While here, update DNSBL link once again.

MFC after:	4 days
2012-12-29 20:42:28 +00:00
gshapiro
896fc63862 Add missing closing quote on commented out example
PR:		bin/174108
Obtained from:	Julian H. Stacey
MFC after:	1 day
2012-12-29 19:57:52 +00:00
peter
a5f5f5cf3f mx1 -> smarthost.ysv 2012-10-15 14:14:21 +00:00
peter
bd5be964da Point freebsd.org cluster machines to mx1 for their smarthost. 2012-10-11 20:46:04 +00:00
gshapiro
a799f274a8 Minor change to force commit this file so new freebsd*.cf files are
built to use the new sendmail-8.14.5/cf tree.

MFC after:	4 days
2011-06-14 04:34:20 +00:00
gshapiro
4afb708ea7 Update DNSBL information (MAPS has been acquired, used a generic example) 2011-06-14 04:33:43 +00:00
gshapiro
4d2b665384 Minor changes to force commit these files so new freebsd*.cf files are
built to use the new sendmail-8.14.4/cf tree.

MFC after:	4 days
2010-01-26 04:44:12 +00:00
gshapiro
1d76251369 A no-op commit to simulate the effect of a forced commit so the file
has a new timestamp as needed for mergemaster.  A more long term
solution to this is needed since svn doesn't support forced commits.
2008-08-31 18:21:15 +00:00
gshapiro
76e027f22f Google changed the location of the blacklists again.
Submitted by:	Tim Pozar
2008-08-28 07:03:13 +00:00
gshapiro
612d924e09 Fix quoting for the dnsbl example -- m4 misparses quoted strings with
commas due to our deconstruction of the line in cf/feature/dnsbl.m4.

PR:		120038
Submitted by:	mattijs vreeling
MFC after:	1 week
2008-02-17 05:38:29 +00:00
gshapiro
c1f0877e6f Use new OSTYPE(freebsd6).
Approved by:	re (scottl)
Requested by:	keramida
2005-06-14 02:25:17 +00:00
ru
d3f727a898 Catch up with etc/Makefile,v 1.324 -- split "install" and "distribution"
targets, have "distribution" always install original (as from the release
media) files, whether SENDMAIL_MC is set or not.  Do error handling the
make(1) way.

Reviewed by:	gshapiro
Approved by:	gshapiro
2004-01-22 17:51:02 +00:00
gshapiro
207029e7f4 Enable IPv6 by default but make it optional so it doesn't affect
sites without IPv6.

Submitted by:	ume
Obtained from:	NetBSD
MFC after:	1 week
2003-12-24 21:15:09 +00:00
gshapiro
7d4f685f3e Adding WorkAroundBrokenAAAA seems a necessity even in the submit.mc given
the number of broken DNS servers out there in the world.  Since we are
diverging from the sendmail.org submit.mc, it's time to make our own
freebsd.submit.mc.

PR:		conf/57733
Reviewed by:	nork
MFC after:	2 weeks
2003-10-19 00:03:13 +00:00
gshapiro
226a2c2049 Turn SENDMAIL_CF_DIR into an officially supported make.conf variable
and use it in src/etc/sendmail/Makefile in case the user wants to use
a different path to the sendmail m4 sources (e.g., sendmail port users).

Submitted by:	dinoex
MFC after:	21 days
X-MFC after:	RELENG_4 code freeze ends
2003-09-24 04:19:26 +00:00
gshapiro
0d97eb2309 Build the submit.cf file instead of installing the version that ships
with the vendor sendmail distribution.  By doing so, we avoid mergemaster
warnings after every 'make' in /etc/mail/.

Reported by:	Jeremy Chadwick <koitsu@parodius.com>
MFC after:	3 days
X-MFC after:	and re approval
2003-09-01 03:40:33 +00:00
gshapiro
bd283b99fb Revert revision 1.25 now that mergemaster does a 'make all' to build
the required .cf file(s).

Submitted by:	ru
X-MFC after:	mergemaster MFC
2003-08-10 20:48:59 +00:00
gshapiro
a72817d73c Continue trying to build SENDMAIL_CF if the user uses SENDMAIL_CF
instead of SENDMAIL_MC but don't remove on it 'make clean' as the
user may not have the original .mc file and removing it could be
dangerous (e.g., make SENDMAIL_CF=/etc/mail/sendmail.cf clean).

Noticed by:	peter
MFC after:	3 days
2003-07-10 04:53:32 +00:00
gshapiro
deabab50c5 Put back install/distribution dependency on the buildable .cf
files to get mergemaster working again.

Noticed by:	Shin-ichi YOSHIMOTO <yosimoto@waishi.jp>
2003-07-07 03:19:46 +00:00
gshapiro
124f21c6d7 Get rid of unneeded depend target
Submitted by:	ru
MFC after:	5 days
2003-07-06 18:54:18 +00:00
gshapiro
ded241d546 - Prevent buildworld from trying to write to /etc/mail/
- Stop 'make clean' from removing SENDMAIL_CF
- install and distribute targets should not attempt to build anything
- SENDMAIL_ADDITIONAL_CF were not installed in the distribution case
- If SENDMAIL_SET_USER_ID was defined, submit.cf was needlessly installed
  in the distribution case
- Collapse install and distribution target into one to remove code
  duplication

Submitted by:	ru
MFC after:	5 days
2003-07-06 18:51:10 +00:00
gshapiro
6f119a739e Style fixes: tab after a dependency operator should be a single space
second level indent of tab should be four spaces

Submitted by:	ru
MFC after:	3 days
2003-07-06 18:07:06 +00:00
gshapiro
2c5f033673 The sendmail binary now has a reasonable default for MaxMimeHeaderLength
built in.  No need to set it here.

MFC after:	1 week
2003-04-18 01:25:41 +00:00
keramida
2b883693be Replace old, not-working URL for an online index of DNS blacklist
servers with a reference to the Google directory.

Reviewed by:	gshapiro
MFC after:	1 week
2002-10-16 22:52:56 +00:00
ru
a8adf98c82 Drop support for COPY, -c has been the default mode of install(1)
for a long time now.

Approved by:	bde
2002-07-29 09:40:17 +00:00
ru
cd7c90d38f s/${INSTALL} -c/${INSTALL} ${COPY}/ 2002-07-18 12:07:49 +00:00
gshapiro
d71c35a87e Change the default permissions for the sendmail statistics file to 0640
instead of 0644 to help protect users against a file locking local
denial of service.

MFC after:	1 day
		pending RE approval
2002-05-24 01:44:53 +00:00
gshapiro
b7c2a22c23 There are still many broken nameservers out there in the wild. Even
though I would personally prefer to see the broken nameservers fixed
instead of standards compliant applications work around them, I can't
force FreeBSD users to help fight that battle.

Submitted by:	Damon Anton Permezel <dap@damon.com>
MFC after:	2 days
		pending RE approval
2002-05-21 02:02:23 +00:00
gshapiro
dc941e21d5 Non-sendmail users use the FreeBSD sendmail startup functionality to start
alternative MTAs.  Therefore, always install rc.sendmail, regardless of
NO_SENDMAIL make.conf setting.  Users can still set mta_start_script to a
different script.

This commit is after a repo-copy of src/etc/sendmail/rc.sendmail to
src/etc/rc.sendmail.

Noticed by:	Calvin NG <calvinng@brel.com>
MFC after:	3 days
2002-04-21 20:32:28 +00:00
gshapiro
b7ddd3c1a9 Provide a new make.conf knob, SENDMAIL_SUBMIT_MC to allow users to pick
the .mc file used for /etc/mail/submit.cf.  By default,
/etc/mail/freebsd.submit.mc is installed and used.

Requested by:	fenner
Submitted by:	ume
MFC after:	1 week
2002-04-14 19:20:26 +00:00
gshapiro
a025cc5b24 Add my Copyright on this file so I can allow others to use it 2002-04-12 20:28:06 +00:00
gshapiro
cd7393b940 Quoting Peter Wemm, "At great personal risk, touch the sendmail startup
again."

As an alternative to sendmail_enable=NONE, solve the boot time problem
for non-sendmail users completely by moving all of the sendmail startup
code from /etc/rc to /etc/rc.sendmail.  The source for that script will
be kept in src/etc/sendmail/rc.sendmail so make.conf's NO_SENDMAIL will
prevent it from being installed.  A new rc.conf variable,
mta_start_script specifies the script to run to start the user's
preferred MTA.  For backward compatibility, it will default to
/etc/rc.sendmail.  The specified script is called out of /etc/rc after
checking to make sure it exists.  A new rc.sendmail.8 man page has also
been added which now houses the sendmail_* variable descriptions
formerly in rc.conf.5.

Use /etc/rc.sendmail in /etc/mail/Makefile to reduce code duplication.

Reviewed by:	-current, -stable, obrien, peter, ru
MFC after:	1 week
2002-04-05 02:30:49 +00:00
gshapiro
3f48fd65ca Fix typos
Noticed by:	Larry Rosenman <ler@lerctr.org>
2002-03-26 16:46:27 +00:00
ru
6cabbe8e84 Removed some redundant stuff that causes compilation warnings. 2002-03-26 13:00:03 +00:00
gshapiro
f01b236369 Instead of dealing with the endless requests to provide more DNS based
black lists in the default config, give a pointer to a non-static list.
I was convinced this was the right thing to do after getting a PR
asking to add ORBZ the day before ORBZ went off the air.

PR:		conf/35884
MFC after:	4 days
2002-03-22 06:40:26 +00:00
markm
d736b831ba Correct a comment; FreeBSD-4 --> FreeBSD-5. 2002-03-16 21:39:26 +00:00
gshapiro
526c28fb44 Make sure we don't remove /etc/mail/sendmail.cf on make clean since this
will break a running system during a buildworld.

Noticed by:	Alexandr Listopad <laa@laa.zp.ua>
MFC after:	1 week
2002-02-24 02:38:23 +00:00
gshapiro
e26790e916 Turn FEATURE(relay_based_on_MX) off by default. It should not be used unless
absolutely necessary

Requested by:	peter
PR:		conf/33855
MFC after:	1 week
2002-02-17 23:38:16 +00:00
gshapiro
9ca121f5b3 Add new build knob, SENDMAIL_SET_USER_ID, which installs sendmail as a
set-user-ID root binary instead of the new method (set-group-ID smmsp).
Therefore, we shouldn't install /etc/mail/submit.cf if it is set.
2002-02-17 22:09:15 +00:00
gshapiro
bf8692f3b6 Update for sendmail 8.12 which has a new OSTYPE(freebsd5)
Fix access_db usage for 8.12
2002-02-17 22:08:18 +00:00
gshapiro
96bd9ad269 Since buildworld builds cf files specified in SENDMAIL_ADDITIONAL_MC,
installworld should install them.

PR:		29928
Submitted by:	wollman
MFC after:	3 days
2001-11-20 03:41:05 +00:00
dd
b429fad1ee Add missing word in comment. 2001-09-30 12:48:17 +00:00
gshapiro
46051bb094 Revert change to always include _FFR_TLS_O_T as it requires FEATURE(access_db)
Problem found by:	nsayer
2001-08-01 02:12:39 +00:00
gshapiro
054d1f29d9 If the user sets SENDMAIL_MC to /etc/mail/sendmail.mc, install is told to
install /etc/mail/sendmail.cf to /etc/mail/sendmail.cf and exits with an
error:

===> etc/sendmail
install -c -o root -g wheel -m 644 /etc/mail/sendmail.cf /etc/mail/sendmail.cf
install: /etc/mail/sendmail.cf and /etc/mail/sendmail.cf are the same file
*** Error code 64

Catch this in the Makefile and don't call install if the source and target
are the same file.

Reported by:	Alexandr Listopad <laa@reis.zp.ua>
MFC after:	1 week
2001-07-23 02:19:02 +00:00
gshapiro
cef3dba089 New make knob, SENDMAIL_M4_FLAGS, modifies the flags passed to m4 when
building a .cf file from a .mc file.

Include -D_FFR_TLS_O_T to enable tls policy control since the sendmail binary
build enables that FFR as well.

PR:		conf/28361
MFC after:	1 week
2001-07-23 01:33:54 +00:00
gshapiro
97ee71fc57 MAPS is becoming a subscription (fee based) service, warn users
ORBS is gone

MFC after:	1 day
2001-07-13 21:51:28 +00:00
gshapiro
5da52a6936 Take advantage of the new OSTYPE(freebsd4) in sendmail 8.11.4
MFC after:	1 week
2001-05-28 17:49:51 +00:00