That makes sense. I am getting the impression that most people support some
form of SMTP auth like Vpopmail? Any recommendations here?
Eric
-----Original Message-----
From: Alex Pennace [mailto:[EMAIL PROTECTED]]
Sent: Monday, December 04, 2000 3:25 PM
To: Eric Walters
Cc: [EMAIL PROTECTED]
Subject: Re: Open Relay questionnaire
<< File: ATT00013.dat >> On Mon, Dec 04, 2000 at 02:24:39PM -0600, Eric
Walters wrote:
> I am looking for some input on this as it relates to virtual hosting. My
> users are all remote and I am trying to find a happy medium between
security
> and user-friendliness. Is there a way to ensure that unless the rcpt to:
or
> mail from: contain a local domain qmail will not deliver the message?
Relaying based on the envelope sender address causes your server to be
an open relay by my standards, a spammer only needs to know the secret
(using certain envelope senders) to use your MTA as a relay.
