Robert, This is probably because sendmail itself is compiled with the tcp wrappers libraries (libwrap) and so it's responsible for doing its own logging. Using the libwrap library only causes an application to use the routines that check the /etc/hosts.[allow,deny] files and allow or deny access but it doesn't use tcp wrappers' logging mechanism. The same is true of other applications (such as ssh) that can be compiled using libwrap. In order to see the error messages from sendmail I'm guessing you'd have to adjust the LogLevel parameter in your sendmail.cf to a higher number, but I haven't tried it so I don't know for sure. John Ritchie On Wed, 8 Nov 2000, Robert Rinnberger wrote:

Hi Juergen,

your guess was the right thing. I use the hosts.allow and hosts.deny. My entry looks now like this:

/etc/hosts.allow .... sendmail: ALL

Because my sendmail is the relayer to and from the internet I have to allow ALL to access sendmail. The only thing I wonder, that there is no logging in /var/log/messages for sendmail. Any other service, which is allowed or denied by tcpwrapper creates an entry in the messages file.

Thanks a lot, Robert ----- Original Message ----- From: To: "Robert Rinnberger" Cc: Sent: Monday, November 06, 2000 9:40 PM Subject: Re: [suse-security] sendmail, 8.11.0, mail from, access denied

...

just a guess. Sendmail is compiled using the tcpwrapper library. If you use hosts.deny / hosts.allow you'll need an entry like:

sendmail: LOCAL, .your.domain

I searched ages. ;-(

Juergen

-- =========================================== __ _ Juergen Braukmann juergen.braukmann@gmx.de| -o)/ / (_)__ __ ____ __ Tel: 0201-743648 dk4jb@db0qs.#nrw.deu.eu | /\\ /__/ / _ \/ // /\ \/ / ===========================================_\_v __/_/_//_/\_,_/ /_/\_\

--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com