Re: [Exim] Security of Exim?

Page principale
Supprimer ce message
Répondre à ce message
Auteur: The Flying Hamster
Date:  
À: exim-users
Sujet: Re: [Exim] Security of Exim?
On Tue, Jun 06, 2000 at 09:38:00PM +0100, Guillaume Finance wrote:
> I've heard that someone tried to intrude a network by getting to the SMTP
> port of the EMail server (Linux / Exim) first to get then to an NT Server.


Unless there's a buffer overflow I've not heard of then I'm not quite
sure how this would work.

> Also I know that we can send faked email just by getting onto the SMTP port
> (via telnet) - does exim can prevent from this?


Nope, it's a function of the smtp specification, providing the
envelope information isn't rejected by your antu-relaying rules then
'faking' an email is trivial.

Mark

--
The Flying Hamster <hamster@???>
http://hamster.wibble.org/
Do not meddle in the affairs of hamsters. Just don't. It's not worth it.
- Ailbhe on #afp