Comments?
This is hardly the only case where the client and server both know that it's OK to relay, even though there's nothing in the SMTP dialog to confirm it. Why should implicit auth via STARTTLS be any different than implicit AUTH by connecting from a friendly IP address or implicit auth by POP-before-SMTP?
I suppose we could allow the second EHLO to say RELAY to tell the client that it's OK to relay, but it's hard to see how this would be useful since the existing practice is that the client just sends the message, and the server lets it know if there's a problem.
Regards, John Levine, [email protected], Primary Perpetrator of "The Internet for Dummies", Information Superhighwayman wanna-be, http://www.johnlevine.com, ex-Mayor "More Wiener schnitzel, please", said Tom, revealingly. _______________________________________________ yam mailing list [email protected] https://www.ietf.org/mailman/listinfo/yam
