On Tue, Jan 18, 2000 at 08:38:07AM -0500, Mike Porter wrote:
> Most likely the problem is above.net has customers who can't
> upgrade to a newer mailer that can block relaying.
So put such a system behind a ``firewall'' (which does not
necessarily mean expensive things, perhaps just IP ACL at
the network egress router) and divert all incoming email to
do so via a bastion server by means of MX records. Trivial.
If you don't want to construct such bastion yourself, ask
your ISP to act as such, and do router ACL blocking to
limit incoming SMTP connectivity from your ISP's server
network.
http://www.zmailer.org/smtprelay.html
If the receiving server is vulnerable to things like:
<"foo@somewhere.com"@receiver.com>
these ISP bastions don't help, as ISP can't analyze
that the address in the local part is a cocoos egg..
(Same *may* also harm self-kept fw/bastions.)
> Mike
/Matti Aarnio
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Sun Jan 23 2000 - 21:00:18 EST