At 10:04 PM +0000 3/20/02, Steve Linford imposed structure on a stream of electrons, yielding: >From Dave Pooser, received 20/3/02, 2:27 pm -0600 (GMT): >>> According to the little I have read on this topic, one of the spam >>> probes used by ORBZ triggered a known problem in Domino servers that >>> then caused an infinite internal mail loop - hence DOS. >>> >>> The "victim", understandably angry, probably decided that he had a >>> much better chance of suing ORBZ or getting them charged than he >>> would of suing IBM or getting a fix for the problem in Domino. >> >> Complicating matters would be ORBZ' MO of repeated, intrusive "proactive" >> testing for open relays. IF the DOS took place after the Domino bug was >> discovered and if ORBZ kept testing despite requests to stop, then I can >> certainly see an actionable issue there. > >Yes, and because ORBZ knew about the Domino bug, they could have >avoided the problem by reading the SMTP banner and not submitting >that particular test to Domino servers... so this was probably >avoidable with a little extra programming.
Complicated slightly by the fact that this machine was appaently behind a PIX, so the banner was not really identifiable except as 'something behind a PIX'. That just changes the scope of the suitable exemptions to machines that wouldn't need it. -- Bill Cole [EMAIL PROTECTED] ############################################################# This message is sent to you because you are subscribed to the mailing list <[EMAIL PROTECTED]>. To unsubscribe, E-mail to: <[EMAIL PROTECTED]> To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]> To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]> Send administrative queries to <[EMAIL PROTECTED]>
