[145853] in North American Network Operators' Group
Re: Outgoing SMTP Servers
daemon@ATHENA.MIT.EDU (Owen DeLong)
Tue Oct 25 11:20:23 2011
From: Owen DeLong <owen@delong.com>
In-Reply-To: <18081.1319538555@turing-police.cc.vt.edu>
Date: Tue, 25 Oct 2011 08:17:28 -0700
To: <Valdis.Kletnieks@vt.edu>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Oct 25, 2011, at 3:29 AM, <Valdis.Kletnieks@vt.edu> wrote:
> On Tue, 25 Oct 2011 02:35:31 PDT, Owen DeLong said:
>=20
>> If they are using someone else's mail server for outbound, how, =
exactly do you control
>> whether or not they use AUTH in the process?
>=20
> 1) You don't even really *care* if they do or not, because...
>=20
> 2) if some other site is running with an un-AUTHed open port 587, the =
miscreants will
> find it and abuse it just like any other open mail relay. The =
community will
> deal with it quick enough so you don't have to. And at that point, =
it's the
> open mail relay's IP that ends up on the block lists, not your mail =
relay's IP.
>=20
But that applies to port 25 also, so, I'm not understanding the =
difference.
> Other people running open port 587s tends to be quite self-correcting.
>=20
At this point, so do open port 25s.
Owen
