You could set the relay for address and have the IP address of the machine that host the ASP form. That will keep it pretty safe.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of R. Scott Perry Sent: Sunday, September 19, 2004 3:51 PM To: [EMAIL PROTECTED] Subject: Re: [IMail Forum] A security question >I'm new in Ipswitch... A simple question: > >I set my server SMTP security option on "RELAY FOR LOCAL USERS ONLY"... It >works, >but I want to have the confirmation that it is a secured enough >configuration. Good question. :) The answer is "no" (any spammer can relay mail if they set the return address to a domain of yours). IMail's SMTP Security options have a number of relaying choices. Of them, only 2 can be used safely (the rest cause you to be an open relay). The two safe options are "Relay for Addresses" and "No Mail Relay". If you use IMail's "Relay for addresses", you would enter a list of "safe" IP addresses that your users may come from; anyone not coming from those safe IPs would need to use SMTP AUTH. If you use "No mail relay", everyone must use SMTP AUTH to relay mail. Note that relay settings apply only to outgoing E-mail, so no matter what your settings are, your users will still be able to get mail. So to reiterate: "Relay for Addresses" or "No Mail Relay" are safe; everything else will get you listed in a number of spam databases. -Scott --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/ To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
