[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-users] [Raq-2] E-mail Authentication
- Subject: RE: [cobalt-users] [Raq-2] E-mail Authentication
- From: "Dan Kriwitsky" <list1@xxxxxxxxxxxxxxxxxxxx>
- Date: Wed Jul 31 09:54:01 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
> Thanks, Dan - I understand the relay risk you and Gerald
> brought up. Fortunately, he comes from a teeny-tiny local
> ISP, and I think the risk exposure is minimal.
Then I bet his tiny ISP has an SMTP server he can use. All he gets by
using your SMTP is an extra hop in his SMTP from his ISP to you. Maybe
it's the kewl factor of putting his own domain in Outlook as the SMTP.
>
> Hmmm - interesting idea. So you're saying that if he
> authenticates into one account, the Raq will use that
> authentication for any other accounts as well?
It's just a list of IPs. It doesn't break them down by domain. If your
customer signed off and a spammer signed on in that 15 minute window,
the spammer would be able to relay via your server. Not too likely to
happen though.
>
> > Otherwise they need to see if their client has the checkbox for "My
> > outgoing (SMTP) server requires authentication"
>
> I thought - perhaps mistakingly so - that the "My outgoing
> server requires authentication" business was separate than
> the POP before SMTP. I just assumed that he could check that
> box, but it would have no impact.
I thought the authentication causes the program to POP the server before
it tries SMTP. I don't offer SMTP to my customers as they have an ISP
for that.
--
Dan Kriwitsky