>else. I asked Ipswitch and they suggested restricting relay to local
>users which I've done.
I really wish they'd stop recommending that. There are plenty of
ignorantly open mail relays already. All mail headers are easily spoofable,
so the only reliable anti-relay defense is relay for addresses. Also,
block spoofing of your inside, trusted addresses with packet filtering at
your border router.
>However this does not prevent a student
>pretending to send mail from a different, genuine user, and Ipswitch
>said that we could not do this.
yep, can't prevent spoofing of all headers. spammers do it systematically.
>I tried enabling AUTH, but when I do I
>can not send mail at all; I get a prompt to authenticate, but it does
>not accept the ID and password. We use an Access database and ODBC for
>the user details on the IMail server.
SMTP AUTH works but has had recent troubled past. There is a patched SMPT32
around that reports here say works correctly. Some of us back at 5.09 are
waiting for 6.04.
>Is there any way to make sure that users sendin mail are who they say
>they are?
Only by standard protocol authentication such as SMTP AUTH for sending mail
from users' programs to Imail, and POP3 and APOP for reading mailboxes by
users' programs.
Len
Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.
