On 09.12.2013 17:34, Viktor Dukhovni wrote: > It is not clear to me why one would allow the inbound delivery of > an e-mail message (with potentially malicious links or attachments), > but would not allow a connections to an LDAP or SQL server. The > latter seems far less risky to me.
But verify just opens an SMTP session to the internal mail server and tests if the recipient exists. It is an "inline" recipient validation whereas an SQL or LDAP query would be "out of band". You would need to allow this extra connection. With verify you just use the SMTP connection you already need to deliver email to your internal system. Regards -- Robert Sander Heinlein Support GmbH Schwedter Str. 8/9b, 10119 Berlin http://www.heinlein-support.de Tel: 030 / 405051-43 Fax: 030 / 405051-19 Zwangsangaben lt. §35a GmbHG: HRB 93818 B / Amtsgericht Berlin-Charlottenburg, Geschäftsführer: Peer Heinlein -- Sitz: Berlin
signature.asc
Description: OpenPGP digital signature
