|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: proxy firewall and email
Subject: RE: proxy firewall and email
From: Jason Diesel (jdiesel
axent.com)
Date: Tue Jan 04 2000 - 09:21:17 CST
- Next message: dave.goldsmithintelsat.int: "FW: Firewalls, PC static routes, gateways"
- Previous message: John F. Appel: "RE: Firewalls, PC static routes, gateways"
- Maybe in reply to: Neil Ratzlaff: "proxy firewall and email"
- Next in thread: dwelchuswestmail.net: "Re: proxy firewall and email"
- Maybe reply: Jason Diesel: "RE: proxy firewall and email"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
The Raptor Firewall is not a mail stor and forward, therefore it has no
knowledge of the users and so on. It merely proxies the mail traffic that
passes through it, and verifies it for adherance to standards, to make sure
that no hacks and attacks are passing.
The Raptor firewall depends on the internal mail server being correctly
configured to allow mail only for designated reciepients. There is support
within the Raptor Firewall for blackhole lists, check sender domains, telnet
debugging, and some other smaller tricks.
You can also configure the Raptor firewall to only accept mail for certain
domains, so killing the relay effect.
Jason
-----Original Message-----
...
I have a question about Raptor firewall and MS Exchange smtp server behind
it. The information below is to the best of my knowledge, but be aware I
know nothing about either Raptor or Exchange or NT. Together they seem to
create an open relay for spam.
The Raptor firewall accepts all mail and passes it to the smtp server for
delivery. If the recipient is not a valid user, the mail gets bounced by
the smtp server, but to the address in the From field, not to the sender or
last smtp server. Since you can put anything you want to in that field,
you can send spam via this relay, albeit perhaps slowly. The firewall does
not keep a list of legitimate users, so it can't reject mail as it should.
...
- Next message: dave.goldsmithintelsat.int: "FW: Firewalls, PC static routes, gateways"
- Previous message: John F. Appel: "RE: Firewalls, PC static routes, gateways"
- Maybe in reply to: Neil Ratzlaff: "proxy firewall and email"
- Next in thread: dwelchuswestmail.net: "Re: proxy firewall and email"
- Maybe reply: Jason Diesel: "RE: proxy firewall and email"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Wed Jan 05 2000 - 02:27:29 CST