[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] [Raq-2] E-mail Authentication

I have to add this in as I experienced a severe relay attack last year due
to this issue.  Even with a small isp - spammers will find a way to discover
your stealth accessibility.  By all means you should try and avoid using a
range of IP's no matter how little known.

Just a note from personal experience... ;>)  (I used a small three ip range
from a small midwestern ISP - and ended up seeing 10,000 messages shoot
through as spam within 48 hours....

Blano


On 7/31/02 12:39 PM, "Chris "Oger" Gebhardt" <oger@xxxxxxxxx> wrote:

>> In the relay section of the email control panel. However, trying to
>> guess by allowing a particular ISP or block of IPs would open you up for
>> spam relay.
> 
> Thanks, Dan - I understand the relay risk you and Gerald brought up.
> Fortunately, he comes from a teeny-tiny local ISP, and I think the risk
> exposure is minimal.
> 
>> The easiest way is to ask your clients to set up two accounts. One POP3
>> with their username and password simply called AAAA since Outlook checks
>> alphabetically.
> 
> Hmmm - interesting idea.  So you're saying that if he authenticates into one
> account, the Raq will use that authentication for any other accounts as
> well?
> 
>> Otherwise they need to see if their client has the checkbox for "My
>> outgoing (SMTP) server requires authentication"
> 
> I thought - perhaps mistakingly so - that the "My outgoing server requires
> authentication" business was separate than the POP before SMTP.  I just
> assumed that he could check that box, but it would have no impact.
> 
> Thanks for the help, guys.
> 
> --Chris
> 
> 
> _____________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users

-- 
Blano
"What we do not understand, we do not possess.." Goethe
AOL IM - bwarrene