[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Port 25 email via telnet exploit
- Subject: Re: [cobalt-users] Port 25 email via telnet exploit
- From: "ISEE Multimedia" <mail@xxxxxxxxxxxxxxxxxxx>
- Date: Sun Jun 2 19:04:04 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
> I searched the archives briefly, but found nothing directly relating to
it...
>
> Why does port 25 allow email to be sent via telnet without validating user
login, domain etc?
>
> Here is how I did it:
>
> HELO
> 501 HELO requires domain address
> HELO serverip
> 250 ns.webyourbusiness.com Hello address [ip], p
> leased to meet you
> MAIL FROM fred@xxxxxxxx
> 501 Syntax error in parameters scanning "FROM"
> mail from: fred@xxxxxxxx
> RCPT 250 fred@xxxxxxxxxxx Sender ok
> TO: dest@xxxxxxxx
> 250 est@xxxxxxxxxxx Recipient ok
> DATA
> 354 Enter mail, end with "." on a line by itself
> Hello - this is a test mail - we need to check this out.
>
> If we get an email back, it will be not a good thing
>
How about turning telnet off!! There is plenty you can do in telnet without
login in!! if you know how.
You should install and use SSH instead!
Regards
Mark
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>