On Thursday 04 January 2007 18:11, Rick Lutowski wrote:
> Graeme Fowler wrote:
> > Renaud was using the telnet client application on his machine to talk to
> > the Exim SMTP server on yours. There's no evidence of a telnet server
> > existing on your server, but you can betcha someone would already have
> > got you if there was :)
>
> Which is why telnet, ftp, etc is not running!
>
> Is there any way to disable the kind of access he
> demonstrated without compromising normal exim
> operation?
Well, he talked SMTP, which is what you're supposed to talk to Exim, so you
can't disable that, but you can prevent the kind of abuse he demonstrated.
--
Magnus Holmgren holmgren@???
(No Cc of list mail needed, thanks)
"Exim is better at being younger, whereas sendmail is better for
Scrabble (50 point bonus for clearing your rack)" -- Dave Evans