>R. Scott Perry wrote:
> > >this is what i see:
> > >
> > >220
> > >***2****************************************************************0*2
> *****
> > >*******************2*****2002*****0*20 *0*00
> >
> > That's a sign of a broken firewall interfering with your SMTP server.
>
>Is it broken or just annoying?
Broken. According to this, the mailserver's name is
***2****************************************************************0*2************************2*****2002*****0*20
*0*00. And that certainly isn't a valid host name.
Of course, IMail servers that aren't in front of a broken firewall will
show up incorrectly as being a host named "X1", so the broken firewall
likely won't cause any noticeable problems.
>Apparently they translate everything except zeros and twos (so the 220
>is OK) to asterisks. A bizarre side effect is you'll see bits of the
>date and time showing through.
That does seem to be what is happening. I'm guessing the PIX people were
very lazy, or had no clue what they were doing. The first 4 characters
("220 " in this case, "220-" for multiline responses) is vital to keep
intact. The host name is required (but as we know, IMail has been
flaunting the RFCs for years on this issue). Anything after that typically
helps identify the mailserver -- so by PIX allowing those 0's and 2's, it's
actually giving hackers some of the useful information that it's supposed
to be hiding (the only advantage to *'ing out everything is to hide
information from hackers).
-Scott
---
Declude: Anti-virus, Anti-spam and Anti-hijacking solutions for
IMail. http://www.declude.com
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.
An Archive of this list is available at:
http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
