[Are so many mailing lists really necessary? I will get three copies of
>>>>> "BR" == Brock Rozen <brozen @
BR> Does anybody know how I can turn EXPN (and VRFY) off on sendmail so
BR> that I don't run into security problems with majordomo?
>From the sendmail operations guide that comes with sendmail (8.7 or
PrivacyOptions = opt,opt,...
Set the privacy options.
``Privacy'' is really a misnomer; many of these are just a way of insisting
on stricter adherence to the SMTP protocol. The options can be selected
public Allow open access
needmailhelo Insist on HELO or EHLO command before MAIL
needexpnhelo Insist on HELO or EHLO command before EXPN
noexpn Disallow EXPN entirely
needvrfyhelo Insist on HELO or EHLO command before VRFY
novrfy Disallow VRFY entirely
restrictmailq Restrict mailq command
restrictqrun Restrict -q command line flag
noreceipts Don't return success DSNs
goaway Disallow essentially all SMTP status queries
authwarnings Put X-Authentication-Warning: headers in messages
The goaway pseudo-flag sets all flags except restrictmailq and
but this, in my opinion, turns off useful features.