email spoofing
Res
res at ausics.net
Thu Jun 14 01:21:45 IST 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
NotDashEscaped: You need GnuPG to verify this message
On Wed, 13 Jun 2007, Alex Neuman wrote:
>
>
> Scott Silva wrote:
>>
>> are you trying this from an ip address on your network, or from outside?
>> Internal addresses on your subnet usually will bypass auth (at least in
>> sendmail).
>>
>>
> Only if you're lazy and set up things like:
>
> 192.168 RELAY
>
> in your /etc/mail/access file...
Lazy? WTF is the point of smtp auth for your own lan...
I abandoned smtp-auth years ago because too many customers can use it to
get you blacklisted (deliberate spam) it was more of a hassle then thats
its worth, if they are not on our network they can use their own ISP's
smtp and not ours.
I will always allow all of our IP ranges for relay on the cust-out-smtp's
as there is nothing at all wrong with doing so, so long as you don't add in
IP ranges that aren't your own, and since no network competently setup
routes RFC1918 addresses, its moot point.
--
Cheers
Res
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
iD8DBQFGcIoZsWhAmSIQh7MRAnfEAJ9BD6blHHLVnhddcIDtWfq8zFw6DACcCQOd
GHFnMsyeXjPVXFCDtmRLaKE=
=p8Fj
-----END PGP SIGNATURE-----
More information about the MailScanner
mailing list