I think I figured it out. The qmail-smtpd.c patch for SMTP AUTH had an
exploit. It did require authentications, but it didn't care what
credentials you threw at it, so long as you sent something.
On that note, does anyone know of a way to get SMTP AUTH working with
qmail without being an
Hello Derrick,
Monday, September 15, 2003, 10:57:57 AM, you wrote:
D I think I figured it out. The qmail-smtpd.c patch for SMTP AUTH had an
D exploit. It did require authentications, but it didn't care what
D credentials you threw at it, so long as you sent something.
Yes, there are/were a
Hello Derrick,
Saturday, September 13, 2003, 12:02:01 PM, you wrote:
D I am looking for a way to further secure a mail server.
A mail server is either secure or not, not half way... it's like being
half pregnant. If you installed qmail properly and from lifewithqmail.org
it is secure by
D Ex.
D To: [EMAIL PROTECTED]
D From: [EMAIL PROTECTED]
D hotmail ends up with a ton of bounce msgs
Bounces are a normal part of email life.
D and thinks the server is a relay.
No they don't. Email admims look at the last sender IP
address in the headers, which is the only
Hi Derrick,
--On Saturday, September 13, 2003 05:10:17 PM -0700 Derrick Ryalls
[EMAIL PROTECTED] wrote:
No they don't. Email admims look at the last sender IP
address in the headers, which is the only valid address, all
others are usually forged.
What I am referring to is the unable to deliver