[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-users] SMTP hole maybe - any ideas
- Subject: RE: [cobalt-users] SMTP hole maybe - any ideas
- From: Jeroen Wunnink <jeroen@xxxxxxxxxxxxxx>
- Date: Wed Jun 4 06:13:11 2003
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
It ends up that this is how sendmail is supposed to work..
You can add some security implementations like ordb and spamhaus rules in
sendmail.cf so dynamic IP's or DSL/Cable lines will be rejected upon
attempting to deliver, but that's about it
At 08:54 AM 6/4/2003 -0400, you wrote:
> If we send an email to an email address that is located on
> our raq3 and send it from another email address that is also
> on the same raq3, then it is relayed without any prevention
> what so ever and without any POP3 account being polled as per
> the pop b4 smtp system.
I'm not sure what your point is. Any email destined for a domain on your
server will be accepted no matter who the sender is or whether they
connect directly to your MX or use someone else's SMTP.
>
> It seems that if a person knows of domains on a server, they
> could send emails purporting to come from other users on the
> ssame server without any problem what so ever.
Why not? Unless the IP they're connecting from is in your access list to
be blocked, why shouldn't the email get through? The sender's domain
won't affect whether they can send to a domain on your server or not.
--
C2003 Dan Kriwitsky
Please reply to the list only. Off list replies are not read.
_____________________________________
cobalt-users mailing list
cobalt-users@xxxxxxxxxxxxxxx
To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
http://list.cobalt.com/mailman/listinfo/cobalt-users
Met vriendelijke groet,
Jeroen Wunnink,
systeembeheer@xxxxxxxxxxxxxx
telefoon:+31 (035) 6285455 Postbus 1332
fax: +31 (035) 6838242 1200 BH Hilversum
http://www.easyhosting.nl