This came across on the Dovecot list recently:
http://marc.info/?l=postfix-usersm=129952854117623w=2
Eric B on the QMT list has done some testing, and it appears that both
spamdyke and qmail-smtpd presently contain this flaw.
Sam, will you have a look into this? The link explains the situation
I don't see how it's a security flaw of any kind. I'm not entirely
certain it's actually a bug, except that it's a minor violation of an RFC.
For those who don't feel like reading through the long writeup from
postfix-users, the executive summary follows: It's possible to send
multiple SMTP
