| 1 | Here's how to remove sendmail from your system. |
| 2 | |
| 3 | 1. Find sendmail in your boot scripts. It's usually in either /etc/rc or |
| 4 | /etc/init.d/sendmail. It looks like |
| 5 | sendmail -bd -q15m |
| 6 | -q15m means that it should run the queue every 15 minutes; you may |
| 7 | see a different number. Comment out this line. |
| 8 | |
| 9 | 2. Kill the sendmail daemon. You should first kill -STOP the daemon; if |
| 10 | any children are running, you should kill -CONT, wait, kill -STOP |
| 11 | again, and repeat ad nauseam. If there aren't any children, kill |
| 12 | -TERM and then kill -CONT. |
| 13 | |
| 14 | 3. Check whether you have any messages in the sendmail queue, |
| 15 | /var/spool/mqueue. If you do, you will have to try flushing them with |
| 16 | sendmail.bak -q. If necessary, wait a while and run sendmail.bak -q |
| 17 | again. Repeat until the queue is empty. This may take several days. |
| 18 | |
| 19 | 4. Remove the setuid bit on the sendmail binary, to prevent local users |
| 20 | from gaining extra privileges through sendmail's security holes. The |
| 21 | binary may be at several different locations: |
| 22 | # chmod 0 /usr/lib/sendmail |
| 23 | # chmod 0 /usr/sbin/sendmail |
| 24 | # chmod 0 /usr/lib/sendmail.mx |
| 25 | |
| 26 | 5. Move the sendmail binary out of the way: |
| 27 | # mv /usr/lib/sendmail /usr/lib/sendmail.bak |
| 28 | # mv /usr/sbin/sendmail /usr/sbin/sendmail.bak |