----- Original Message ----- From: "Noel J. Bergman" <[EMAIL PROTECTED]>
> > If this can be implemented, the hole can be closed by checking that the > > MAIL FROM:<> mail originates within the network. > > RemoteAddr(Not)InNetwork should cover that aspect. > > > Is there a valid reason to accept null senders through the SMTPHandler? > > No idea. Ask Serge. I haven't checked the SMTP RFC to see if a null sender > is legit. Yes, null senders is a very important concept in SMTP handling. Bounce messages and other system-generated notices often use the null sender. They can originate from anywhere, not just on the local network. You just want to make sure you don't open your server to allow it to relay those messages. Serge Knystautas Loki Technologies http://www.lokitech.com/ -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
