[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Port 25 email via telnet exploit

Subject: Re: [cobalt-users] Port 25 email via telnet exploit
From: Jeff Lasman <jblists@xxxxxxxxxxxxx>
Date: Mon Jun 3 22:59:01 2002
Organization: nobaloney.net
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Paul Jacobs wrote:

> Sounds like the pop before smtp is not working....

Not really, Paul... it was a lot simpler than that...

He had used ssh (or perhaps telnet, he didn't make it clear) to log into
his RaQ.

That made him a local user.

Once he's a local user, he emulated an email client by using telnet to
attach to port 25 to send an email somewhere.

That's acceptable behavior.  If it wasn't, then the box couldn't send
email anywhere for local users.  For example, it couldn't send mail for
anyone logged in and using pine, or any other local mailer, it couldn't
send email for majordomo.  It couldn't send email for any form-to-mail
program, etc.

What he did was normal and reasonable behavior; he'd authenticated
himself as allowed to use the box to send mail when he logged in to the
command prompt.

Jeff
-- 
Jeff Lasman <jblists@xxxxxxxxxxxxx>
Linux and Cobalt/Sun/RaQ Consulting
nobaloney.net
P. O. Box 52672, Riverside, CA  92517
voice: (909) 778-9980  *  fax: (702) 548-9484

References:
- Re: [cobalt-users] Port 25 email via telnet exploit
  - From: ISEE Multimedia
- [cobalt-users] Port 25 email via telnet exploit
  - From: Greg Hewitt-Long
- Re: [cobalt-users] Port 25 email via telnet exploit
  - From: Paul Jacobs

Prev by Date: Re: [cobalt-users] another formail subject
Next by Date: Re: [cobalt-users] Port 25 email via telnet exploit
Previous by thread: Re: [cobalt-users] Port 25 email via telnet exploit
Next by thread: Re: [cobalt-users] Port 25 email via telnet exploit

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index