NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2001-08

From: Arvel Hathcock (arvelaltn.com)
Date: Fri Aug 17 2001 - 10:49:04 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> It seems like that Mdaemon SMTP server can be used for
> unauthorized relaying. Mail can be relayed when sent
> "FROM or TO known user", it means that mail sent "from"
> the account of one of served domains always can be relayed.
> There is no problem to specify any "from" user, for
> example, system account "mdaemon".

Please read the manual. There are ways of verifying addresses. Also, the
default installation does not allow mail relaying. You have enabled it
yourself. There is a switch setting that prevents this sort of thing and it
is set by default.

Arvel Hathcock
CEO, Alt-N Technologies Ltd.
http://www.altn.com
============================
http://www.mdaemon.com
http://www.relayfax.com
============================

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]