I suppose a malformed header could be troublesome (they have been known to hang Exch servers), but they are far and few between.
-----Original Message----- From: Tom Meunier [mailto:[EMAIL PROTECTED]] Sent: Friday, February 22, 2002 2:00 PM To: Exchange Discussions Subject: RE: PIX fixup and E2K Yeah, they tend to do that. That's why I tend to ask them exactly what documented vulnerability exists within the pages of RFC2821 and 2822, that they feel it's necessary to remove the whole of ESMTP's extensions. I haven't gotten an answer that satisfies me yet. > -----Original Message----- > From: Tony Hlabse [mailto:[EMAIL PROTECTED]] > Posted At: Friday, February 22, 2002 03:32 PM > Posted To: MSExchange Mailing List > Conversation: PIX fixup and E2K > Subject: Re: PIX fixup and E2K > > > I see said the blind man. Thanks for the info. The customer > just feels that he vulnerable and is getting told this by his > Cisco support people. > > ----- Original Message ----- > From: "Tom Meunier" <[EMAIL PROTECTED]> > To: "Exchange Discussions" <[EMAIL PROTECTED]> > Sent: Friday, February 22, 2002 4:12 PM > Subject: RE: PIX fixup and E2K > > > That's not what the fixup protocol does. It basically strips > anything out but HELO, MAIL, RCPT, DATA, QUIT, RSET, and > NOOP, and doesn't send them to your SMTP server. So MAIL TO: > would go through, but AUTH LOGIN: would not. And you're > requiring AUTH to allow your external clients to relay. > > So make your management choose. Do they want to relay spam? > Do they want to allow your users to use POP3 at home? I say > again, mailguard isn't necessarily evil. It just really > doesn't do anything to add any level of security. > > _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
