[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Port 25 email via telnet exploit
- Subject: Re: [cobalt-users] Port 25 email via telnet exploit
- From: Jeff Lasman <jblists@xxxxxxxxxxxxx>
- Date: Mon Jun 3 23:02:01 2002
- Organization: nobaloney.net
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
Paul Jacobs wrote:
> Telnet is turned off on my boxes, but you can still get to port 25 via
> telnet... just like you can telnet to port 80 of any webserver.
> It's a huge hole that not may know about..
Let's not confuse things any more than they already are, Paul. I'm
willing to bet you I can telent into your Windows SMTP server exactly
the same way from your DOS prompt. It's normal behavior. If you
couldn't connect to port 80, you couldn't see websites. If you couldn't
connect to port 25, mail wouldn't work at all.
Sure things would be a lot more secure, but you might as well unplug
your box.
> your only like of defense is how
> the webserver or mail server respond to email or web connections.
> Send mail has had this problem for some time...
If mail didn't have this problem, then no one could ever send email.
Connecting on port 25 is how mailservers talk to each other.
> Ohh, and for those that say "your I.P. is in the relay box" I say I have
> sent mail from an I.P. I KNOW is not in the relay.
Once you've logged in to the shell (whether dos or bash or csh, or any
shell) you're a local user and you can send mail anywhere.
Jeff
--
Jeff Lasman <jblists@xxxxxxxxxxxxx>
Linux and Cobalt/Sun/RaQ Consulting
nobaloney.net
P. O. Box 52672, Riverside, CA 92517
voice: (909) 778-9980 * fax: (702) 548-9484