The idea is that too
many such commands may indicate that an attack is in progress. The useless commands
are NOOP and VERB (but not HELP). If sendmail detects too many useless commands, it
logs the following warning and sleeps at least one second before replying:
envelope id : client: possible SMTP attack: command=useless command here, count=how
many
This is the Title of the Book, eMatter Edition
Copyright ?© 2007 O??™Reilly & Associates, Inc. All rights reserved.
24.9 Alphabetized Options | 1049
Prior to V8.14, the only way to change the limit on useless commands was to change the
setting for the MAXNOOPCOMMANDS compile-time macro in sendmail/srvrsmtp.c. Beginning with
V8.14, however, you may override that default with your own limit by setting this
MaxNOOPCommands option, which is declared like this:
O MaxNOOPCommands=num ?†? configuration file (V8.14 and later)
-OMaxNOOPCommands=num ?†? command line (V8.14 and later)
define(`confMAX_NOOP_COMMANDS??,`num??) ?†? mc configuration (V8.14 and later)
Here, num is of type numeric. If num is negative, non-numeric, or zero, no limit is placed on
the number of useless commands that the client may send. If this option is entirely omitted,
the default is the original value of 20.
The MaxNOOPCommands option is not safe. If specified from the command line, it can cause
sendmail to relinquish its special privileges.
Pages:
1854
1855
1856
1857
1858
1859
1860
1861
1862
1863
1864
1865
1866
1867
1868
1869
1870
1871
1872
1873
1874
1875
1876
1877
1878