Port 587 is the mail submission port. That port should accept mail
only after SMTP AUTH, no matter whether the submitter is on "my
networks" or roaming. What's the point of accepting unauthenticatd
sumbission on port 587 (or any port)?
Port 25 is the mail relay port (no authentication for MTA-MTA
relayiing), which has been abused by letting unauthenticated mail be
_submitted_ there. If a mail admin is still accepting
unauthenticated submissions on any port, he should be relieved of his job.
I can't believe this problem is still being discussed, or that it's
still a problem.
Len
