× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. November 2001

RE: fix.your.open.relay.or.die.net

Chris,

1) If YOU'RE sending the e-mail, you're not relaying. Send-on-behalf-of
isn't the same as relaying.

2) The password isn't required for connection to the SMTP server, but if you
attempt to send an e-mail to an address that isn't local to that server
before you enter the password you'll receive a "relaying denied" message. So
any "normal" inbound messages aren't affected by the password scheme, just
relayed messages.

-Walden

------------
Walden H Leverich III
President
Tech Software
(516)627-3800 x11
WaldenL@TechSoftInc.com
http://www.TechSoftInc.com



-----Original Message-----
From: Chris Bipes [mailto:chris.bipes@cross-check.com]
Sent: Wednesday, November 21, 2001 10:26 AM
To: 'midrange-l@midrange.com'
Subject: RE: fix.your.open.relay.or.die.net


You really want to lock down e-mail, then get a product like Norton
Anti-Virus Corporate edition.  It comes with a SMTP server that accepts all
incoming e-mail and scans it for viruses.  It then forwards to your real
SMTP server.  No incoming mail can get to your real server thru the fire
wall.  Your real server sends mail directly to whom ever from whom ever. Hey
we send e-mail to our customers customers on behalf of our customers. Are we
spamming?  NO, we do this as a service for our customers, sending
confirmations of checks being accepted and funds being electronically
processed telling the consumer to write the check in to their check register
and void the physical check.  If we turn off relaying, we would have to add
thousands of domains to our mail server, with 20-50 changes a day. Sometimes
there are business reasons for using mail relaying.  But then, with two SMTP
servers, one can stop the public from relaying off their server.

If I require a password on my SMTP server, how will the public get e-mail to
me?  Is the password only required for sending outbound e-mail so I can
still receive inbound e-mail?



Christopher K. Bipes      mailto:ChrisB@Cross-Check.com
Operations & Network Mgr  mailto:Chris_Bipes@Yahoo.com
CrossCheck, Inc.                  http://www.cross-check.com
6119 State Farm Drive     Phone: 707 586-0551 x 1102
Rohnert Park CA  94928    Fax: 707 586-1884

-----Original Message-----
From: Brad Jensen [mailto:brad@elstore.com]
Sent: Tuesday, November 20, 2001 9:49 PM
To: midrange-l@midrange.com
Subject: Re: fix.your.open.relay.or.die.net
Then POP3 doesn't require a paswword for logon, it's outside the RFC?

The RFC should require a password for SMTP.

I do suggest that IP filtering be done for SMTP with the SMTP server, not in
the firewall.

If your SMTP server supports it.
_______________________________________________
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@midrange.com To subscribe, unsubscribe,
or change list options,
visit: http://lists.midrange.com/cgi-bin/listinfo/midrange-l
or email: MIDRANGE-L-request@midrange.com
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.