Skip Navigation Links | |
Exit Print View | |
Managing sendmail Services in Oracle Solaris 11.1 Oracle Solaris 11.1 Information Library |
Oracle Solaris Version of sendmail
Flags Used and Not Used to Compile sendmail
MILTER, Mail Filter API for sendmail
Versions of the Configuration File
Software and Hardware Components of Mail Services
Simple Mail Transfer Protocol (SMTP) Mailers
UNIX-to-UNIX Copy Program (UUCP) Mailers
Name Service Domain Name and Mail Domain Name
Typical Format for Mail Addresses
Route-Independent Mail Addresses
Mail Service Programs and Files
Enhancement for vacation Utility
Contents of the /usr/bin Directory
Contents of the /etc/mail Directory
Contents of the /etc/mail/cf Directory
Contents of the /usr/lib Directory
Other Files Used for Mail Services
sendmail and Its Rerouting Mechanisms
Mail Addresses and Mail Routing
Interactions of sendmail With Name Services
Mail Domains and Name Service Domains
Requirements for Name Services
Changes in Version 8.14 of sendmail
Changes in Version 8.13 of sendmail
Support for Running SMTP With TLS in Version 8.13 of sendmail
Configuration File Options for Running SMTP With TLS
Macros for Running SMTP With TLS
Rule Sets for Running SMTP With TLS
Security Considerations Related to Running SMTP With TLS
Additional Command-Line Options in Version 8.13 of sendmail
Additional and Revised Configuration File Options in Version 8.13 of sendmail
Additional and Revised FEATURE() Declarations in Version 8.13 of sendmail
Changes From Version 8.12 of sendmail
Support for TCP Wrappers From Version 8.12 of sendmail
submit.cf Configuration File From Version 8.12 of sendmail
Functions That Distinguish sendmail.cf From submit.cf
Functional Changes From Version 8.12 of sendmail
Additional or Deprecated Command-Line Options From Version 8.12 of sendmail
Additional Arguments for the PidFile and ProcessTitlePrefix Options From Version 8.12 of sendmail
Additional Defined Macros From Version 8.12 of sendmail
Additional Macros From Version 8.12 of sendmail
Additional MAX Macros From Version 8.12 of sendmail
Additional and Revised m4 Configuration Macros From Version 8.12 of sendmail
Changes to the FEATURE() Declaration From Version 8.12 of sendmail
Changes to the MAILER() Declaration From Version 8.12 of sendmail
Additional Delivery Agent Flags From Version 8.12 of sendmail
Additional Equates for Delivery Agents From Version 8.12 of sendmail
Additional Queue Features From Version 8.12 of sendmail
Changes for LDAP From Version 8.12 of sendmail
Change to the Built-In Mailer From Version 8.12 of sendmail
Additional Rule Sets From Version 8.12 of sendmail
Changes to Files From Version 8.12 of sendmail
This section describes domain names as they apply to sendmail and name services. Furthermore, this section describes the rules for effective use of name services, and the specific interactions of sendmail with name services. For details, refer to the following topics.
If you are looking for related task information, refer to How to Use DNS With sendmail or Administering Mail Alias Files (Task Map) in Chapter 2, Mail Services (Tasks).
The standard sendmail.cf file uses mail domains to determine whether mail is delivered directly or through a mail host. Intradomain mail is delivered through a direct SMTP connection, while interdomain mail is forwarded to a mail host.
In a secure network, only a few selected hosts are authorized to generate packets that are targeted to external destinations. Even if a host has the IP address of the remote host that is external to the mail domain, the establishment of an SMTP connection is not guaranteed. The standard sendmail.cf assumes the following.
The current host is not authorized to send packets directly to a host outside the mail domain.
The mail host is capable of forwarding the mail to an authorized host that can transmit packets directly to an external host. Actually, the mail host can be an authorized host.
With these assumptions, the mail host is responsible for delivering or forwarding interdomain mail.
sendmail imposes various requirements on name services. To improve your understanding of these requirements, this section first describes the relationship of mail domains to name service domains. Then the section describes the various requirements. Refer to the following.
The mail domain name must be a suffix of the name service domain. For example, if the domain name of the name service is A.B.C.D, the mail domain name could be one of the following.
A.B.C.D
B.C.D
C.D
D
When first established, the mail domain name is often identical to the name service domain. As the network grows, the name service domain can be divided into smaller pieces to make the name service more manageable. However, the mail domain often remains undivided to provide consistent aliasing.
This section describes the requirements that sendmail imposes on name services.
A host table or map in a name service must be set up to support three types of gethostbyname() queries.
mailhost – Some name service configurations satisfy this requirement automatically.
Full host name (for example, smith.admin.acme.com) – Many name service configurations satisfy this requirement.
Short host name (for example, smith) – sendmail must connect to the mail host in order to forward external mail. To determine if a mail address is within the current mail domain, gethostbyname() is invoked with the full host name. If the entry is found, the address is considered internal.
NIS and DNS support gethostbyname() with a short host name as an argument, so this requirement is automatically satisfied.
Two additional rules about the host name service need to be followed to establish efficient sendmail services within a name service.
gethostbyname() with full host-name argument and short host-name argument should yield consistent results. For example, gethostbyname(smith.admin.acme.com) should return the same result as gethostbyname(smith), if both functions are called from the mail domain admin.acme.com.
For all name service domains under a common mail domain, gethostbyname() with a short host name should yield the same result. For example, if the mail domain smith.admin.acme.com is given, gethostbyname(smith) should return the same result when the call originates from either the ebb.admin.acme.com domain or the esg.admin.acme.com domain. The mail domain name is usually shorter than the name service domain, which gives this requirement special implications for various name services.
For more information about the gethostbyname() function, refer to the gethostbyname(3NSL) man page.
The following list describes the interactions of sendmail and NIS and provides some guidance.
Mail domain name – If you are setting up NIS as the primary name service, sendmail automatically strips the first component of the NIS domain name and uses the result as the mail domain name. For example, ebs.admin.acme.com becomes admin.acme.com.
Mail host name – You must have a mailhost entry in the NIS host map.
Full host names – The normal NIS setup does not “understand” the full host name. Rather than trying to make NIS understand the full host name, turn off this requirement from the sendmail side by editing the sendmail.cf file and replacing all occurrences of %l with %y. This change turns off sendmail's interdomain mail detection. If the target host can be resolved to an IP address, a direct SMTP delivery is attempted. Ensure that your NIS host map does not contain any host entry that is external to the current mail domain. Otherwise, you need to further customize the sendmail.cf file.
Matching full host names and short host names – Follow the previous instructions about how to turn off gethostbyname() for a full host name.
Multiple NIS domains in one mail domain – All NIS host maps under a common mail domain should have the same set of host entries. For example, the host map in the ebs.admin.acme.com domain should be the same as the host map in the esg.admin.acme.com. Otherwise, one address might work in one NIS domain, but fail in the other NIS domain.
For task information, refer to Administering Mail Alias Files (Task Map) in Chapter 2, Mail Services (Tasks).
The following list describes the interactions of sendmail with NIS and DNS and provides some guidance.
Mail domain name – If you are setting up NIS as the primary name service, sendmail automatically strips the first component of the NIS domain name and uses the result as the mail domain name. For example, ebs.admin.acme.com becomes admin.acme.com.
Mail host name – When the DNS forwarding feature is turned on, queries that NIS cannot resolve are forwarded to DNS, so you do not need a mailhost entry in the NIS host map.
Full host names – Although NIS does not “understand” full host names, DNS does understand. This requirement is satisfied when you follow the regular procedure for setting up NIS and DNS.
Matching full host names and short host names – For every host entry in the NIS host table, you must have a corresponding host entry in DNS.
Multiple NIS domains in one mail domain – All NIS host maps under a common mail domain should have the same set of host entries. For example, the host map in the ebs.admin.acme.com domain should be the same as the host map in the esg.admin.acme.com domain. Otherwise, one address might work in one NIS domain, but fail in the other NIS domain.
For task information, refer to How to Use DNS With sendmail and Administering Mail Alias Files (Task Map) in Chapter 2, Mail Services (Tasks).