Ah, so Cisco still has the bug in it. :) It's amazing that a firewall -- probably one of the most well known Internet security devices -- could have a flaw like that in it.That sheds a lot of light on subject. Before adding a custom welcome message it responded as "*****************2******0" and now its all stars. I'll check with Cisco for the fix.
The programmers at Cisco wrote code like this:
o Start at the beginning of the line
o Go through each character in the line
o If it is not "0" or "2", replace it with a "*"
instead of:
o Start at the 4th character in the line
o Go through each character in the line
o Replace it with a "*"
It's virtually the same amount of code, and virtually the same amount of programming time in either case. Yet #1 is insecure (it lets some data through that it is supposed to be blocking), and #2 is secure (it blocks everything that it is designed to block). #2 would also be slightly faster. They could even use a slightly more complex algorithm that would allow the greeting to be RFC-compliant, without letting the software/version through.
I wouldn't worry about that bug, though. It's purpose, as far as I can tell, it is designed to block the name of the mailserver software and the version. Since you have a custom greeting anyways, the Cisco greeting blocker isn't necessary.
:)BTW, I am really impressed with Declude Junkmail. It is killing about 100,000 spams a month for us. Happy clients. The whitelist feature is such a bonus too. I recommend it, as well as IMail, all the time.
-Scott
---
Declude: Anti-virus, Anti-spam and Anti-hijacking solutions for IMail. http://www.declude.com
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
