Re: [Exim] SMTP-Auth

Top Page
Delete this message
Reply to this message
Author: Bruce Richardson
Date:  
To: exim-users
Subject: Re: [Exim] SMTP-Auth
On Fri, May 14, 2004 at 07:43:20AM +0200, Paulo Andre wrote:
>
> Thanks for all the replies, but I think Fred understood my question, the
> reason behind this, it would trival for a spammer to telnet into the server
> and generate spam from a bogus email address from my domain and send it to
> the whole domain.


They can do this anyway. There's nothing magical about telnet: if the
spammer telnets to the server, he's only going to do the same smtp
commands that his spamming software would do.

If you ban external smtp connections from sending mail with return paths
and From: headers matching your own domain, you will then face a couple
of problems, the most obvious and intractable of which being that your
staff will not be able to sign up for external mailing lists.

--
Bruce

The ice-caps are melting, tra-la-la-la. All the world is drowning,
tra-la-la-la-la. -- Tiny Tim.