[4906] in WWW Security List Archive
Re: SMTP headers & anon e-mail (was: RE : IE Mail)
daemon@ATHENA.MIT.EDU (BVE)
Wed Mar 26 21:44:26 1997
Date: Wed, 26 Mar 97 16:20:07 EST
From: bve@quadrix.com (BVE)
To: dgd@nebula.is.rpslmc.edu
In-Reply-To: <Pine.GSO.3.95.970326121105.24648A-100000@nebula.is.rpslmc.edu> (dgd@nebula.is.rpslmc.edu)
Cc: www-security@ns2.rutgers.edu
Errors-To: owner-www-security@ns2.rutgers.edu
> can be accomplished by teaching your SMTP server to reject messages it is not
> supposed to handle. In order to accommodate your own customers, who presumably
[...]
Or, you could use Qmail.
While Qmail is a great program suite, and I *do* use it. It is not sufficient
by itself. It gives the ability to only accept mail addressed to specific
domains, but you need something else, like tcpd or your router ACLs, in order
to differentiate your dialup customers from random people in the world. This
is required, in order to allow your dialup customers to send mail from a mail
client with their "true" e-mail address, which will likely be
@somearbitrarydomain.com.
-- Bill Van Emburg
Phone: 908-235-2335 Quadrix Solutions, Inc.
Fax: 908-235-2336 (bve@quadrix.com)
Check out http://yourtown.com! (http://quadrix.com)
"You do what you want, and if you didn't, you don't"
