Re: [Exim] STRANGE DEVELOPMENT WITH MAIL ABUSE SERVICES

Top Page
Delete this message
Reply to this message
Author: Oliver Egginger
Date:  
To: Odhiambo G. Washington
CC: exim-users
Subject: Re: [Exim] STRANGE DEVELOPMENT WITH MAIL ABUSE SERVICES
> Maybe this is not so good???
No thats right-minded,
but your problems don't come from your MTAs configuration.

If there is a client in your network which allows relaying
without checking anything,
so you only can cut off this by prohibit all SMTP traffic to bypass
your mailserver.
This is typically done by firewall rules.

In other words :
    host_accept_relay = ...
Can only be checked if the SMTP traffic reach your maiserver.
:-)
That's the snag.


- oliver


Am Sonntag, 26. Mai 2002 13:18 schrieben Sie:
> * Oliver Egginger <Oliver.Egginger@???> [20020526 14:13]: wrote:
> > You wrote:
> > > I believe I am right in saying that everyone having clients numbering
> > > about 1k will have this open relay problem.
> >
> > We have more than 1k clients. We don't have this problem.
> >
> > 1. Our mailsystems ar'nt open relays.
> > 2. We have configured our network to discard every SMTP
> >    connexion which don't  _come_from_  OR  _go_to_  our
> >    mailsystems.

> >
> > - oliver
>
> Hi Oliver,
>
> I allow IP blocks that we own to relay using this line in the configure
> file:
>
> host_accept_relay = 62.8.64.0/19:212.49.74.0/25
>
> Maybe this is not so good???
>
> I believe this is the reason why I have this problem, but I am wondering
> if there is a better way, given that I handle so many virtual domains.
>
> Thanks
>
> -Wash