UCF STIG Viewer Logo

Mail relaying must be restricted.


Finding ID Version Rule ID IA Controls Severity
V-50815 OL6-00-000249 SV-65021r2_rule Medium
This ensures "postfix" accepts mail messages (such as cron job reports) from the local system only, and not from the network, which protects it from network attack.
Oracle Linux 6 Security Technical Implementation Guide 2015-03-23


Check Text ( C-53287r2_chk )
If the system is an authorized mail relay host, this is not applicable.

Run the following command to ensure postfix accepts mail messages from only the local system:

$ grep inet_interfaces /etc/postfix/main.cf

If properly configured, the output should show only "localhost".
If it does not, this is a finding.
Fix Text (F-55609r1_fix)
Edit the file "/etc/postfix/main.cf" to ensure that only the following "inet_interfaces" line appears:

inet_interfaces = localhost