On Tue, 30 Apr 2002, V=EB=E9r=EAsh Kh=E5n=F6rk=E3r wrote:
> > Another dump check it out: > > The underlined command shouldnt be allowed IMHO. Check > it out: > After the user has given EHLO, the user is supposed to > give AUTH, but in the below case if the user gives > _MAIL FROM_ its still accepted. Isnt it a security > lapse? > > Please do reply back. no, if the auth fails the server state remain in non-authenticated. that's it. - Davide - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED]
