>(IMail v6.06 - SMTP AUTH)
>
>We need to enable SMTP AUTH for all of our clients -- we've found some
>device/person (IP) on the outside of our network spoofing emails to lists by
>the few users who are authorized list posters.
>
>In order to do this, is it best that we just check "No Mail Relay" on the
>server and make all of our users go through the few steps to do SMTP AUTH?
That's the best way to make sure that you are not an open relay (you could
instead use "Relay for Addresses", and enter some "safe" IP addresses, and
have everyone not coming from those IPs use SMTP AUTH ).
However, I don't believe that will prevent people from sending mail to the
list using forged return addresses, since SMTP AUTH only applies to
outgoing (relayed) E-mail.
-Scott
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
This E-mail came from the Declude.Virus mailing list. To
unsubscribe, just send an E-mail to [EMAIL PROTECTED], and
type "unsubscribe Declude.Virus". You can E-mail
[EMAIL PROTECTED] for assistance. You can visit our web
site at http://www.declude.com .
