Hi Guys,
I'm having some problems with a remote site that seems to be attempting
to use us as an open relay, fact is, we arent...
Looking up mail.thot.net ...Launching rlytest ...
Connecting to 207.210.162.233 ...<<< 220 dns2.thot.net ESMTP
>>> HELO isrv1.pa.vix.com<<< 250 dns2.thot.net
>>> MAIL FROM:<[EMAIL PROTECTED]><<< 250 ok
>>> RCPT TO:<[EMAIL PROTECTED]>
<<< 553 sorry, that domain isn't in my list of allowed rcpthosts (#5.7.1)
rlytest: relay rejected - final response code 553
------------------------------------------------------------Test complete.
GOOD NEWS! Host mail.thot.net refuses to relay mail.
My guess is, the remote mailer is using a scanner that reports open relays
with sendmail return codes. I'm tempted to recompile qmail with the
sendmail
return codes instead of the X.X.X codes but I feel that people should be
able
to have systems on the net withought being abused...
Microsoft Corporation (ZONE12-DOM)
One Microsoft Way
Redmond, WA 98052-6399
US
Domain Name: ZONE.COM
Administrative Contact:
Binkley, Kevin Xining (KB106) [EMAIL PROTECTED]
(408) 446-1200
Technical Contact, Zone Contact:
Kearns, Paul (PK47) [EMAIL PROTECTED]
(206) 882-8080 (FAX) (206) 936-7329
tcp 6 0 dns2:smtp www.zone.com:1219 CLOSE
tcp 6 0 dns2:smtp www.zone.com:3030 CLOSE
tcp 6 0 dns2:smtp www.zone.com:1260 CLOSE
tcp 6 0 dns2:smtp www.zone.com:3106 CLOSE
tcp 0 25 dns2:smtp www.zone.com:1299
ESTABLISHED
tcp 0 0 dns2:smtp www.zone.com:3181
ESTABLISHED
This has been going on for about 5 days now and i've exausted every
reasonable
means at bringing attention to this issue with microsoft. I've sent emails,
telephone calls (left messages) and sent faxes. Now I feel that something
has to
be done, i've tried to block the IP range on our router, but zone.com is
pretty
popular with our users (go figure). If anyone wouldn't mind shedding some
advice
on the issue i would appreciate it.
I'm not necessarily looking to use my network resources to solve this
problem, but
more so bring attention to the internet community that companies like
Microsoft are
doing these things. Hopefully this will act as a deterrent so that others
won't have
to go through with what I'm dealing with.
Thanks in advance,
J.P. Racine
Thot Networks
[EMAIL PROTECTED]
