UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Mail relaying must be restricted.


Overview

Finding ID Version Rule ID IA Controls Severity
RHEL-06-000249 RHEL-06-000249 RHEL-06-000249_rule Medium
Description
This ensures "postfix" accepts mail messages (such as cron job reports) from the local system only, and not from the network, which protects it from network attack.
STIG Date
Red Hat Enterprise Linux 6 Security Technical Implementation Guide 2013-02-05

Details

Check Text ( C-RHEL-06-000249_chk )
Run the following command to ensure postfix accepts mail messages from only the local system:

$ grep inet_interfaces /etc/postfix/main.cf

If properly configured, the output should show only "localhost".
If it does not, this is a finding.
Fix Text (F-RHEL-06-000249_fix)
Edit the file "/etc/postfix/main.cf" to ensure that only the following "inet_interfaces" line appears:

inet_interfaces = localhost