Re: mail relay

Wed, 20 Jun 2001 08:59:17 -0700 

Hello,

On Wed, Jun 20, 2001, 15:41:57 GMT
  phil, <[EMAIL PROTECTED]> wrote:

>I have just done a security check at the website "www.hackerwhacker.com"
>
>It gave me the following message regarding mail relay security on my
>mail server:
>
>
>   1.  TEST: Checking normal relaying capability...
>
>       MAIL FROM: [EMAIL PROTECTED]
>       (250) sender accepted
>       [EMAIL PROTECTED]
>       (471) cannot be accepted now: path is unknown.
>       MAYBE. Your SMTP server has what appears to be a non-standard
>return code. The message should provide you information. Negative
>sounding responses probably indicate that relaying is
>       denied and you are SAFE.

The domain name in the destination could not be resolved via DNS - but that might be a 
temporary problem, thus the 4xx error code.

>
>      2.  TEST: Checking sneaky <"[EMAIL PROTECTED]"> ...
>
>       MAIL FROM: [EMAIL PROTECTED]
>       (250) sender accepted
>       <"[EMAIL PROTECTED]">
>       (250) <"[EMAIL PROTECTED]"> recipient accepted
>       UNSAFE. Your SMTP server is permitting relaying with this method.
>
>Spammers can use it.

That's a bug in the test - the quoted address is considered in SIMS "as is", so it 
will try to deliver to LOCAL account "[EMAIL PROTECTED]". You have the Unknown account 
configured on your server, so that message would end up in that account - no relay 
here.

>It appears I am secured against unauthorised mail relay from test 1 but
>test 2 that uses the "sneaky" method says I am vulnerable.
>Can someone please explain to me what method has been used here and how
>I protect against it.?

Remove the account Unknown.

>Thanks for any help.
>Phil


Best regards,
Dmitry Akindinov

=======================================================================
When answering to letters sent to you by the tech.support staff, make
sure the original message you have received is included into your reply.

#############################################################
This message is sent to you because you are subscribed to
  the mailing list <[EMAIL PROTECTED]>.
To unsubscribe, E-mail to: <[EMAIL PROTECTED]>
To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]>
To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]>
Send administrative queries to  <[EMAIL PROTECTED]>

Reply via email to