We have a condition where there is someone using one of the email accounts of a customer to relay email. Each time they show up in the logs they have a different IP so it is pointless to block the specific Ips.
No Mail Relay is selected in the SMTP settings of Imail (7.14)
If you use the "No Mail Relay" option, and someone successfully sends an E-mail to an address not on your server, either [1] They know the password for a valid account on your server, or [2] They have found a "back door" (such as the "percent hack", which Declude JunkMail will catch).
I've used the test from: http://members.iinet.net.au/~remmie/relay/index.cgi Using "mail.sgdesign.net" as the server name to check my server and I found it to confirm a relay of the intended email address if it is one from my server. If it is on another location I have gotten messages that elude to no relay being allowed.
Do you mean *from* or *to* an address on your server?
Your mailserver must accept all E-mail *to* users on your server (that isn't relaying).
If E-mail *from* users on your server can be relayed (to addresses that are not on your server), then you are using the "Relay for local users" setting (which should not be used).
Note that the test at the URL above requires that you enter a non-local address for testing. If you enter a local address, it won't work.
We've now been blocked by AOL and do not know what else to do.
Do you have an example from the IMail SMTP log file? That should help determine the problem.
Declude is sending a message each time I test the account:
Declude Virus v1.65 caught the [Outlook 'Blank Folding' Vulnerability] virus in [No attachment] from [EMAIL PROTECTED] to: [EMAIL PROTECTED]
<G>
That open relay test does indeed send an E-mail that contains the Blank Folding vulnerability (although it does not contain an actual virus). I'm surprised that they haven't updated their test yet, as any up-to-date virus scanner should block that E-mail.
-Scott
---
Declude JunkMail: The advanced anti-spam solution for IMail mailservers.
Declude Virus: Catches both viruses and vulnerabilities in E-mail, with no annual licensing fees.
--- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
