Author: W B Hacker Date: To: exim users Subject: Re: [exim] Workaround for port 25 blocking in complex roadwarrior
scenario
Helge Jensen wrote:
>
> Steven Wayne skrev:
>
>
>>Any reason you can't use their Exchange server as a relay?
>
>
> They got blacklisted for having an open relay
As they should.
> and the way out some
> security-consultant proposed was to stop *all* relaying on the
> exchange-server.
As should have been all along.
> Of course, this makes no sense whatsoever, but sense
> seems to be in short supply at the IT-department.
>
Makes perfect sense. RFC compliant as well.
You are the one not making 'sense' - 'open relays' went away when I still had hair.
If you wish to submit traffic to a mail server for delivery not 'local' to that
server, you are expected to authenticate, i.e:
- be 'known' to that server, have an account, UID, and password - preferably
conveyed by a secure means.
Why not just DO that - to any server you have a valid account on?
IOW - just log in and send. No need to open a 'relay'.
