Re: [exim] Open relay?

Top Page
Delete this message
Reply to this message
Author: Ralph Ballier
Date:  
To: exim-users exim.org
Subject: Re: [exim] Open relay?
Hello,

this is the authenticator section:

------------------------- start ---------------------------------------
begin authenticators

login:
driver = plaintext
public_name = LOGIN
server_prompts = Username:: : Password::
server_condition = ${if or { \
{pwcheck{$1:$2}} \
{ldapauth{user=${lookup ldapdn{ LDAP_DEFAULT_CONTROLS ldap:///LDAP_BASEDN?dn?sub?(uid=$auth1)}} \
pass=${quote:$auth2} \
ldap:///}} \
}}
----------------------- stop -----------------------------------------

Greetings

Raba

----------------ursprüngliche Nachricht-----------------
Von: "Todd Lyons" tlyons@???
An: "Ralph Ballier" ralph.ballier@???
Kopie: "exim-users exim.org" exim-users@???
Datum: Tue, 14 Feb 2012 13:51:32 -0800
-------------------------------------------------


> On Tue, Feb 14, 2012 at 1:22 PM, Ralph Ballier
> ralph.ballier@??? wrote:
>>
>> I found this lines in mainlog:
>>
>> 2012-02-13 16:25:53 1Rwxmr-0003tG-09 <= havicker@??? H=(User) [4.79.231.188] P=esmtpa A=login S=1695
>> I think, this is relaying.
>> There is the string A=login
>> Do you mean, this is the user name? But I mean, we have not a user named "login".
>
> Below is what my logs look like when a user authenticates. Notice how
> the username they authenticated with is part of the A=login: string.
>
> 2012-02-14 04:30:47 1RxA2N-0003kh-WD <= matt@???
> H=c-66-41-183-88.hsd1.mn.comcast.net (OwnerPC) [66.41.183.88] P=esmtpa
> A=login:matt@??? S=4046
> id=2406A9DA978B495387CD35DA5E43D270@OwnerPC
>
> It kinda sounds like you have a bug in your authentication
> configuration in that it allows the smtp auth to complete without a
> username. Please post your authenticator section, specifically the
> "login" authenticator.
>
> ...Todd
> --
> SOPA: Any attempt to [use legal means to] reverse technological
> advances is doomed. --Leo Leporte
>
>
>


--
Systemsignatur