Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- yum -y install ssmtp
- service sendmail stop
- chkconfig --levels 2345 sendmail off
- chkconfig --del sendmail
- export tmpsm=$(which sendmail)
- mv $tmpsm $(echo $tmpsm.bak)
- ln -s $(which ssmtp) $tmpsm
- groupadd nogroup
- useradd ssmtp -g nogroup -s /sbin/nologin -d /nonexistent -c "sSMTP pseudo-user"
- chown ssmtp:wheel /etc/ssmtp/ #http://en.wikipedia.org/wiki/Wheel_(Unix_term)
- chmod 4750 /etc/ssmtp/ #https://en.wikipedia.org/wiki/Setuid
- chown ssmtp:wheel /etc/ssmtp/ /etc/ssmtp/ssmtp.conf
- chmod 640 /etc/ssmtp/ssmtp.conf
- chown ssmtp:nogroup $(which ssmtp)
- chmod 4555 $(which ssmtp)
- sed s/root=postmaster/#root=postmaster/ -i /etc/ssmtp/ssmtp.conf
- sed s/mailhub=mail/#mailhub=mail/ -i /etc/ssmtp/ssmtp.conf
- echo "root=mbrownnyc@stackexchange.com" >> /etc/ssmtp/ssmtp.conf #will route anything that's sent to any user with a UID under 500 (check /etc/passwd) to mbrownnyc@stackexchange.com
- echo "mailhub=smtp.stackoverflown.com:587" >> /etc/ssmtp/ssmtp.conf
- echo "AuthUser=mbrownnyc@stackexchange.com" >> /etc/ssmtp/ssmtp.conf
- echo "AuthPass=XXXXXXXXX" >> /etc/ssmtp/ssmtp.conf
- echo "RewriteDomain=mbrownnyc@stackexchange.com" >> /etc/ssmtp/ssmtp.conf #will rewrite the domain when destined for a domain
- echo "Hostname=mbrownix.mbrownnyc@stackexchange.com" >> /etc/ssmtp/ssmtp.conf
- echo "FromLineOverride=YES" >> /etc/ssmtp/ssmtp.conf
- echo "UseTLS=YES" >> /etc/ssmtp/ssmtp.conf
- echo "UseSTARTTLS=Yes" >> /etc/ssmtp/ssmtp.conf
- echo "root:mbrownnyc@stackexchange.com" >> /etc/ssmtp/revaliases
- echo "seccubus:mbrownnyc@stackexchange.com" >> /etc/ssmtp/revaliases
- #setup send as alias
- echo 'root: mbrownnyc@stackexchange.com' >> /etc/aliases
- echo 'seccubus: mbrownnyc@stackexchange.com' >> /etc/aliases
- newaliases
- yum -y install mailx
- #test baseline:
- echo "test" | mail -v -s "$(date)" mbrownnyc@stackexchange.com
- #test sending to a local user:
- echo $(netstat -apn | grep :) | mail -v -s "$(date)" root #<-------------------FAILS to send due to SERVER specific policy! because "TO: root"
- #check logs:
- tail -f /var/log/maillog
Add Comment
Please, Sign In to add comment