Mark H. Mabry <[EMAIL PROTECTED]> wrote:
>
> I'm running Qmail 1.03 on a Debian Linux PC connected to a cable-modem
> (roadrunner). The other day, a roadrunner security test found that my
> mailserver allows some third-party relays. It sent me the failing example
> which I'll include below. It also pointed me to a website to help me in
> fixing this problem. The website is http://mail-abuse.org/tsi/ar-fix.html,
> which says that I should not be having this problem since I use qmail.
>
> Here is the failing example. I've tried it myself and seen it accept the
> message. In the example I've replaced my explicit IP address with
> 200.200.200.200.
>
> >>> MAIL FROM:<openrelaytest@[200.200.200.200]>
> <<< 250 ok
> >>> RCPT TO:<[EMAIL PROTECTED]@[200.200.200.200]>
> <<< 250 ok
> >>> DATA
> <<< 354 go ahead
This isn't a failure. Roadrunner isn't doing their homework -- not all
MTAs mean "Yes, I'll deliver this mail" when they say "354 go ahead".
Qmail would have properly bounced this message _after_ accepting it into
the queue if your system is configured as you say -- and therefore, you
aren't an open relay.
Charles
--
----------------------------------------------------
Charles Cazabon <[EMAIL PROTECTED]>
Any opinions expressed are just that -- my opinions.
----------------------------------------------------
