At 5:36 PM -0400 07/11/2002, Neil Herber wrote: >It is rumored that on or about 2002-07-11 10:16 AM -0700, Warren Michelsen wrote as >follows: >>I had thought that SIMS would reject email to domains for which there are no router >entries, with either a No-Such-Account or a We-Don't-Relay error. > >Warren > >I am pretty sure that the problem is the DNS entry for the domain-that-is-gone. > >... >However, it looks to me like SIMS does a lookup on xxxxxxx.eton.ca, finds the IP is >its own, and does not find a router entry blocking xxxxxxx.eton.ca, and so is quite >happy to accept the mail.
I can understand it accepting the mail for delivery from you, on a known, trusted client IP address, and dutifully trying to send it on to its destination. Why would it accept such mail from a non-client IP? > >Of course the mail was undeliverable as was the automated SIMS bounce so now I have 2 >entries in my queue, both failed. All they are doing is consuming disk space because >SIMS has finished with them both. > >As to whether this is a huge DOS hole, I don't think so, because unless the mail is >addressed to a domain with a valid DNS entry that resolves to your mail server IP, it >will never even arrive! Oh? What would happen if mail was addressed to a nonexistent account at the IP address <bogus@[192.168.1.1]>? Would it be rejected? -- "President Bush said the 9-11 terror strikes were an attack on our freedoms. "John Ashcroft has decided that it's better to destroy those freedoms than to leave them exposed as such an easy target." - Pauly & Maury, Weakly Politics newsletter ############################################################# This message is sent to you because you are subscribed to the mailing list <[EMAIL PROTECTED]>. To unsubscribe, E-mail to: <[EMAIL PROTECTED]> To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]> To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]> Send administrative queries to <[EMAIL PROTECTED]>
