[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] SMTP hole maybe - any ideas

Subject: RE: [cobalt-users] SMTP hole maybe - any ideas
From: "Dan Kriwitsky" <list1@xxxxxxxxxxxxxxxxxxxx>
Date: Wed Jun 4 06:10:17 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

> 
> from what I have experienced, this means that I could surely 
> in effect find someone elses raq3,

Or any server.

> locate domains on it and 
> send emails through its smtp server to other domains on that 
> server,

You're not sending through, you're sending to.

> when I have nothing what so ever to do with it. Thus 
> I could in effect say to the people I email within that 
> server, that I am there hosting supplier (if there domain and 
> email is run from that server) and say "You are the worst 
> customer we have had and want you to go away" hehehe

You can forge any domain as the sender.

> 
> The only thing that will be traceable is the method with 
> which they connect to the internet, ie there dynamic IP address.

Or any IP.


> 
> If I am getting this so so wrong then please forgive me and 
> excuse my tired tired head....

You describe how email works. A mailer connects to your server. The send
mail. Your server looks to see if it's supposed to accept mail for that
recipient. If it's OK it accepts the mail. If the sender is not in a
blocklist, it accepts the mail. The fact they connected directly to your
MX is irrelevant.

-- 
C2003 Dan Kriwitsky

Please reply to the list only. Off list replies are not read.

References:
- RE: [cobalt-users] SMTP hole maybe - any ideas
  - From: Ian

Prev by Date: Re: [cobalt-users] Raq4 - majordomo one-way mailing list
Next by Date: RE: [cobalt-users] SMTP hole maybe - any ideas
Previous by thread: Re: [cobalt-users] SMTP hole maybe - any ideas
Next by thread: RE: [cobalt-users] SMTP hole maybe - any ideas

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index