Re: [Exim] vulnerabilities

Páxina inicial
Esta mensaxe é parte do seguinte fío:
M----+\Árbore completa do fío ordenada por data
M....MMAnand Buddhdev o <-
M+++\Marc Peiser o ->
Borrar esta mensaxe
Responder a esta mensaxe
Autor: John Burnham
Data:  
Para: exim mailing list
Asunto: Re: [Exim] vulnerabilities
> Hi there,
>
> I would like to disable features like EHLO, RCPT, VRFY and EXPN which
may
> enable hackers to gain information. Would you say this is a bad idea?
> If not, how do I go about doing this?
>
vrfy and expn - yeah, turn them off if you want. To turn off vrfy set
smtp_verify = false
in your exim config file (it defaults to false these days though....).
As for expn the config value
smtp_expn_hosts (which is a host list type)
is what you're looking for. This is unset by default....
But disabling EHLO and RCPT is probably not a good idea.....
John




Esta mensaxe foi enviada ás seguintes listas:
Exim-users
Información da lista | Mensaxes recentes		<-Re: [Exim] vulnerabilitiesRe: [Exim] vulnerabilities->
Tahini and Hummus and Cumin Development Archives administrado por cumin AdminsLurker (versión 2.3)