My Oracle Support Banner

Why doesn't the /etc/mail/relay-domains restrict hosts from using the mail relay server? (Doc ID 1934146.1)

Last updated on OCTOBER 08, 2019

Applies to:

Solaris Operating System - Version 10 1/13 U11 to 11.2 [Release 10.0 to 11.0]
Information in this document applies to any platform.


The /etc/mail/relay-domains file for restricting hosts from being able to send mail via our relay host, is not actually restricting anything.  Hosts that are not in it/not in the allowed domains as well are able to send mail through the relay host regardless. Host restriction only works via the /etc/hosts.allow file and TCP Wrappers.  How does the local-host-names file work, and does it relate to relay-domains?


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
 relay-domains: List of all domains for which relaying is allowed.
By default, only the local domain is allowed.
 TCP Wrappers and hosts.allow:  Starting with sendmail 8.12, Solaris provides TCP Wrappers
(host-based access)
 the /etc/mail/local-host-names file

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.