[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-developers] cobalt sendmail tricks/open relay

Subject: Re: [cobalt-developers] cobalt sendmail tricks/open relay
From: Michael Stauber <devel@xxxxxxxxxxxxxx>
Date: Wed Mar 26 18:13:00 2003
Organization: SOLARSPEED.NET
List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>

> My ISP just fingered me as an open relay.  I'm not really happy about
> this. I've done research on sendmail in general, and have noticed
> that Cobalt has a really insecure version of sendmail running - 8.10.2

That's what POP-before-SMTP (or the so called "POP authenticated Relaying") is 
for. You can activate it in the "Advanced" tab of your Sendmail configuration 
in the GUI.

Once POP-before-SMTP is enabled people can only relay email through your 
server if they authenticate themselves through POP3 or IMAP first.

So once a user checks his email his IP address is temporary allowed to send 
email through your server.

More information about how to counter SPAM and unwanted relaying can be found 
here in the article "SPAM prevention: POP-before-SMTP and related questions" 
at this URL:

http://www.solarspeed.net/kb/659.php

-- 

With best regards,

Michael Stauber

References:
- [cobalt-developers] cobalt sendmail tricks/open relay
  - From: t (dot) jay fowler

Prev by Date: [cobalt-developers] cobalt sendmail tricks/open relay
Next by Date: Re: [cobalt-developers] Instal MYSQL 4.0.12 on RAQ4
Previous by thread: [cobalt-developers] cobalt sendmail tricks/open relay
Next by thread: [cobalt-developers] raqbackup

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index