Re: [Exim] SMTP Spoofing - Preventing Local Relaying

Top Page
This message is part of the following thread:
M++\the complete thread tree sorted by date
MMMMSuresh Ramasubramanian at <-
MMMGiuliano Gavazzi at ->
Delete this message
Reply to this message
Author: Glen Mehn
Date:  
To: Mail List
CC: exim-users
Subject: Re: [Exim] SMTP Spoofing - Preventing Local Relaying
Mail List wrote:

>
> Now with that account info if you try and send a message to a remote
> server, like for example mail to my yahoo account - me@??? -then
> the
> mail server will block the relay attempt and tell you "relaying denied"..
>
> --But-- if you try and send mail to another domain/user on the server
> housing domainA.com, then exim will accept the connection and hand-off
> the
> message..

Well, that's how smtp works-- basically. smtp is the way that mail goes
from one box to another. Say, for instance, you set your mail client:

smtp server: smtp.isp.com

then you send mail to smtp.isp.com, which looks up foo@???, and
sends it over smtp. What you're maybe missing is that your mail client
(outlook express) speaks smtp-- the same as anohter isp's smtp server.
Keeps thing simple.

So, following suresh's advice, block by IPs (or blocks of IPs-- in the
case of people who are dialing up)

any box who speaks smtp and can reach your box on tcp/25 will be able to
send mail to local users at your box. That's how smtp works.

You might pick up _Exim, the mail transfer agent_ by Phillip Hazel, the
author of exim, which has an excellent overview of the ins and outs of
how mtas work.

glen



This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [Exim] SMTP Spoofing - Preventing Local Relaying[Exim] auth required for mozilla but not javamail????->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)