Jürgen Hoffmann wrote: > Noel J. Bergman: > > Something more important: I am -1 on the current code. The technical > > justification for vetoing this change is that we are tracking only the > > IP address. One person on a non-routable subnet authenticates via POP3 > > or IMAP, and everyone else going through the same gateway router gets > > to use the now Open Relay?
> this is how POP-before-SMTP is done, and how other mailservers implement it And in ancient days, almost all mail servers were open relays. And we also didn't used to have so many hotels, Internet cafes, offices, even some service providers, using non-routable subnets and a single gateway IP. But with massive explosion of Internet access points and very little pickup for IPv6, non-routable subnets are now more the norm than the exception. POP3 before SMTP was a quick hack because POP3 already had authentication, and SMTP didn't have it (at the time). Even sites, such as ORDB, that recommend POP3 before SMTP say that STMP AUTH would be preferable. Even POP3 is dangerous without SSL. All of these protocols date back to long gone days when the population of the Internet was trustworthy. > You can read the explanation about a different project and how it > handles this here: http://popbsmtp.sourceforge.net/manpage.shtml Yes, I know. Your point? Do you deny that mapping just the IP opens the door to re-use by everyone else using the gateway router? > > Better would to be to maintain {ID, IP}-tuples. > > Although that would be more difficult, or perhaps less useful, in virtual > > user table situations, since the POP3 USER and the SMTP MAIL FROM would be > > different, it would be better than creating Open Relays; > exactly. And so we agree, and need not argue the point. :-) > Then again the question at hand is why implement it different from > what the System Administrator would expect? Because I'm interested in security and correct behavior, not jumping off an old bridge that dates back to days when SMTP AUTH wasn't as common. I'll agree with you that there may be cases where POP3 before SMTP may be easier for some admin, so I'm not saying that I don't want the idea implemented at all. I just don't want us to ship the most vulnerable and naive implementation of it. --- Noel --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
