Sendmail 8.11.1 Release Notes HP-UX 11.
© Copyright 2006 Hewlett-Packard Development Company L.P Legal Notices © Copyright 2006 Hewlett-Packard Company, L.P. Confidential Computer Software. Valid license from HP required for possession, use or copying. Consistent with FAR 12.11 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor’s standard commercial license. The information contained herein is subject to change without notice.
Table of Contents 1 New and Changed Features........................................................................................................7 New Features........................................................................................................................7 Changed Features...............................................................................................................21 Removed Features.................................................................................
List of Tables 3-1 4-1 Man Pages...................................................................................................................25 Defect Fixes in HP-UX 11.0.........................................................................................
1 New and Changed Features Sendmail 8.11.1 is available on HP-UX 11.0 platform as a web upgrade. This version offers various new features and enhancements that enable your mail system to handle high volumes of mail with ease. It also offers new anti-spamming features, which provide granular and finer control over existing functions implemented by Sendmail and other agents. This version of Sendmail is a dual stack implementation of IPv4 and IPv6.
A new queue file naming system is also introduced in this release. The algorithm used to name files ensures that the names will be unique for 60 years. The queued items can be moved between queues with ease. • Enhanced Status codes as defined by RFC 2034 This feature provides an official SMTP extension to deliver the Enhanced Mail System Codes for messages. These system codes have been derived from RFC 1893.
NOTE: For more information on MSA, refer to “Spam Control using Message Submission Agent” section below. The fields currently supported by Sendmail for DaemonPortOptions are: 1. Family = inet, inet6 2. Address = IP address or hostname 3. Port = Port number/name 4. Listen = Listen queue size 5.
• Spam Control using Message Submission Agent (RFC 2476) Message Submission Protocol is a means for MUAs to introduce new messages into the message transfer agent routing network. Messages being submitted by MUAs, in some cases, may be unfinished. Unfinished messages need to be completed by the MSA before submitting to the MTA. It also helps in implementing authenticated submission, including off-site submission by authorized users such as travellers.
NOTE: MSA can be turned off in the sendmail.cf file using the option, ‘no_default_msa’ in gen_cf. For more information, refer to “no_default_msa” option below. The XUSR SMTPcommand as well as the’-U’ (initial user submission) command line option are deprecated. Mail user agents are expected to start using MSA for initial user message submission from now onwards. XUSR may be removed in future releases.
By using delay_checks, the rulesets check_mail and check_relay will not be called when a client connects or issues a MAIL command, respectively. Instead, those rulesets will be called by the check_rcpt ruleset; they will be skipped if a sender has been authenticated using a "trusted" mechanism, i.e. one that is defined via the list of AuthMechanisms. If check_mail returns an error, the RCPT TO command will be rejected with that error.
NOTE: Sendmail 8.11.1 depot will install the mailservs file will be in /usr/newconfig/etc/rc.config.d. You need to manually move this file to /etc/rc.config.d/ in order to use this feature. The priorities for these flags are defined in the /usr/newconfig/etc/rc.conig.d/mailservs file. 7. send_only This option generates a sendmail.cf file without the ‘check_compat’ ruleset. You can only send mail messages, but cannot receive them. The SENDMAIL_SENDONLY flag in /etc/rc.config.
DaemonPortOptions has one sub-option called ‘modifiers’ (M), one of which is ‘a’. This instructs the daemon to necessitate authentication for all connections to it. By default, it appears in the sendmail.cf file as: #O DefaultAuthInfo=/etc/mail/default-auth-info The DefaultAuthInfo option sets the filename which contains the authentication information for outgoing connections by default.
the configuration file. In the generic-hpux10.mc file, the version id string and the DOMAIN () flag can be modified to contain ‘mydomain.com’. 2. 3. Create a file mydomain.com.m4 in /usr/newconfig/etc/mail/cf/domain/ directory. This file must be similar to the /usr/newconfig/etc/mail/cf/domain/generic.m4 file, with the version id containing ‘ mydomain.com’. Generate the sendmail.cf.gen file using gen_cfutility with ‘virtusertable’ option and move this file to /etc/mail/sendmail.cf.
IMPORTANT: ‘Virtual Hosting’ feature provides better support for ISPs that offer queueing services to dial-up customers as queue-runs no longer wait for the dial-up server connection attempts to time out. • LDAP-based Routing This feature can be used to implement the LDAP-based re-routing. This provides a method to re-route addresses with a domain portion in class {LDAPRoute} to either a different mail host or a different address.
5. ‘-k’ - ldap search string (key) String that defines how a ldap map takes its input value and initiates an ldap search. For example, -k (&(ObjectClass=mailrecipient) (mail=%0)) 6. ‘-v’ - ldap attribute Value that replaces the origin string in the map. In most cases, this will be the rfc822 email address.
a. The total time spent in satisfying a socket control request can be set using the ‘Timeout.control’ option. The default setting for this option is: #O Timeout.control=2m b. The resolver’s transmission time interval (in seconds) can be set using the ‘ Timeout.resolver.retrans’ option. This option sets the ‘ Timeout.resolver.retrans.first’, which sets the resolver’s transmission time interval (in seconds) for the first attempt to deliver a message. It also sets the ‘Timeout.resolver.retrans.normal’ option.
5. PidFile The location of the ProcessId (Pid) file can be defined using this option. The default setting for this option is: #O PidFile=/etc/mail/sendmail.pid /etc/mail/sendmail.pid will be taken as the default file, if this option is not set. If you choose a directory other than /etc/mail for the pidfile, please ensure that the directory has proper write permissions as those of /etc/mail. 6.
1. -G This option indicates that the message being submitted by the command line is meant only for relaying and not for gateway submission. This implies that the message will be rejected if the addresses are not fully qualified and canonification will not be performed on the message. NOTE: Mail User Agents (MUA) begin with "-G" to indicate that the message submission is relayed. 2. -L This option can be used to set the identifier in syslog messages to a supplied tag.
If the required item is looked up in a map, it will be tried with the corresponding tag in front, then without any tag (as fallback to enable backward compatibility). For example, From:spammer@some.dom REJECT To:friend.domain RELAY Connect:friend.domain OK Connect.from.domain RELAY From:good@another.dom OK From:another.dom REJECT Changed Features The following changes have been made in version 8.11.
Removed Features There are no removed features in this release of Sendmail.
2 Installation Information Read this chapter before installing version 8.11.1 of Sendmail. Compatibility with Previous Versions Customers currently using any 8.x version of Sendmail do not need to modify their configuration file. It is compatible with this release of Sendmail. However, it is highly recommended to use the Sendmail 8.11.1 configuration file (.cf) version9 delivered with this release in order to effectively use the new features and changes incorporated in this version.
The administrators are recommended to take necessary action based on the notification messages. NOTE: If you want to install a patch or revert back to the previous version, you need to disable Sendmail 8.11.1 by running the command ”/usr/bin/ enable_inet -r sendmail” in the command line to revert back to Sendmail 8.9.3. Please note that you will not be able to use the new options incorporated in this release, if you wish to revert back to Sendmail 8.9.3. When you upgrade a HP-UX 11.
3 Documentation The following product documentation is available for Sendmail 8.11.1: Sendmail Information Sendmail 8.11.1 documentation is available through its man pages. Table 3-1 lists and describes the man pages distributed with Sendmail 8.11.1. Table 3-1 Man Pages Man Page Description killsm.1m Kills the sendmail daemon. mailq.1 Prints a summary of the mail messages queued for future delivery. mailstats.1 Prints mail traffic statistics. makemap.1m Creates the database maps for sendmail.
• • • • • • • 26 RFC 2476 (Message Submission) RFC 2487 (SMTP Service Extension for Secure SMTP over TLS) RFC 2505 (Anti-Spam Recommendations for SMTP MTAs) RFC 2553 (Basic Socket Interface Extensions for IPv6) RFC 2554 (SMTP Service Extension for Authentication) RFC 2821 (Simple Mail Transfer Protocol) RFC 2822 (Internet Message Format) Documentation
4 Known Problems, Limitations, and Fixes This chapter discusses the known problems, workarounds, fixes, and defects closed in this release of Sendmail. Known Problems and Workarounds The following are the known problems in this release of Sendmail: • Sendmail uses identd, an optional authentication tool to find the user id for a given connection established with a remote machine. identd invokes some kernel services which hold the system resources for a long time.
data phase. The email queue warning is returned to the sender with the Diagnostic-Code including an incorrect address. A workaround for this problem has been provided with this release. In such cases, no address will be added in the Diagnostic-Code line in the warning messages. Limitations The following are the limitations and fixes in Sendmail 8.11.1: • If the LDAP server is used to resolve aliases and the LDAP server happens to be a IPv6 server, Sendmail-8.11.1 will be unable to use LDAP.
NOTE: The Sendmail HP-UX 11.0 releases B.11.00.01.006 and B.11.00.01.007 were intermediate releases. You may not find these release names mentioned in any documentation available with B.11.00.01.008 because they did not provide a complete solution. Table 4-1 Defect Fixes in HP-UX 11.0 Defect # Description CR JAGaa30867 Site hiding for local delivery CR JAGaa31678 Sendmail 10.20 patch PHNE_11395 removes UUCP rule.
Table 4-1 Defect Fixes in HP-UX 11.0 (continued) 30 Defect # Description CR JAGaa30185 Starting mail daemon has warning and system was forced to use short name. CR JAGab15526 Errors seen after boot:/sbin/rc. Failed to read row/col in console. CR JAGa31082 Sendmail 10.20 with PHNE_9624 has problems with DBM files. CR JAGab46785 Sendmail cant send to Error-To: specified in the message if the unknown user is at a remote host. CR JAGaa31466 ER: PHNE_10496 installation requires the /etc/nsswitch.
Table 4-1 Defect Fixes in HP-UX 11.0 (continued) Defect # Description CR JAGae52730 When name server times out, Sendmail retries instantly due to wrong interpretation of the retransmission timeout value. CR JAGae56930 If you set the resolver retransmission timeout value to a value greater than 20 seconds in the sendmail configuration file, sendmail fails to resolve the client’s hostname. CR JAGae58098 In some cases, sendmail does parse mail headers properly.
