>Received many e-mail messages today from ordb.org to determine if our >server is an open relay. According to them, it is. In SMTP Security, I >only allow relay for local addresses and use the local IP. > >The "solution" to close the relay is to "Disable SMTP AUTH reporting" and >have all e-mail clients use SMTP AUTH, is at:
Their solution is actually to UNcheck "Disable SMTP AUTH reporting" (it's not intuitive; you have to uncheck the option to enable it...). >I'm using version 7.07 and wondering if in fact I am open and how to >further lock down our server. http://www.ordb.org/lookup/?host=207.155.252.18 shows that 207.155.252.18 isn't listed. Which of the ORDB tests went through your server? "Relay for addresses" shouldn't allow any through (although the % test can go through under certain uncommon situations). -Scott --- Declude: Anti-virus, Anti-spam and Anti-hijacking solutions for IMail. http://www.declude.com --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Please visit the Knowledge Base for answers to frequently asked questions: http://www.ipswitch.com/support/IMail/
