Scott, Monday, June 24, 2002 you wrote:
RSP> And that's exactly why we are worried. <G> My best guess is that RSP> those bytes were designed to scare people from trying to make RSP> their own changes. There doesn't seem to be any purpose to most RSP> of those bytes. I don't disagree at all. I have a lot of utilities I've written for my own use that I would never dream of providing others for this very reason. Just to add some additional preliminary research indications: Byte 12 is the on/off indicator whether all computers are denied or allowed except for the list. Byte 16 does appear to be a counter of some kind and in all my tests so far seems to always equal twice the number of active entries including a 0000FFFF entry which may signify end of list. I have no studied a large list however and am not certain what the limit may be. The 0000FFFF entry also is used to replace a deleted entry but it appears at the end of the list when this occurs. However, the list doesn't seem to sort at that time but I keep forgetting to study this particularly. The "possible hack attempt" denials are not kept in this file. I don't know where they are kept. This would be useful for your purposes I think. I mentioned a 2nd list earlier. This seems to occur when all active acl entries are deleted. This can occur when all entries are deleted one by one or when changing mode from all access to no access. Whenever it happens though the marker is moved to first place on the active list and the byte 16 counter is reset to 2. All the old entries appear below the marker. Subsequently wen new entries are inserted they appear in the active list above the marker. The first element after the 1st marker (the 0000FFFF) is replaced with another marker. So the total array length does not change on inserts. Eventually the 2nd list disappears. I wonder if this has to do with preserving a fixed amount of memory space or perhaps a future use in that regard. I also verified that I can modify the existing smtpd32.acc file, replace it, and then view the changed contents correctly in the admin gui. As far as I can tell however these changes do not become active until smtp is toggled as expected. Terry Fritts Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Please visit the Knowledge Base for answers to frequently asked questions: http://www.ipswitch.com/support/IMail/
