"Andrew Macpherson" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] > --On Wednesday, December 06, 2006 22:50:06 -0500 "Eric B." > <[EMAIL PROTECTED]> wrote: > > | Would this be considered a possibile security hole that I shouldn't > allow? > > Yes, I wouldn't allow un-authenticated relay, let alone update of > operating > parameters. It's your system, you evaluate the risk.
Well - it definitely isn't an open relay; it is no worse than sending to a local user. All this does is allow non-authenticated users to send mail to the email interface addresses if they aren't authenticated. Although it is still slightly better than that, as it is only restricting users from my local domain list to send non-authenticated to the email interface. But I agree - it does concern me a little. That's why I was wondering if anyone else was doing something like this. I'm assuming that since Fritz added the option in 1.2.6, that there must have been some demand / request for it.... Thanks, Eric ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
