[67504] in North American Network Operators' Group
SMTP authentication for broadband providers
daemon@ATHENA.MIT.EDU (Dan Ellis)
Tue Feb 10 20:43:16 2004
Date: Tue, 10 Feb 2004 20:42:29 -0500
From: "Dan Ellis" <ellis@corp.ptd.net>
To: <nanog@merit.edu>
Errors-To: owner-nanog-outgoing@merit.edu
This is a multi-part message in MIME format.
------_=_NextPart_001_01C3F040.4F12EA5E
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Greetings,
We're a medium sized regional MSO/broadband provider with 200k+
mailboxes, strongly considering enabling SMTP authentication on our
customer-facing SMTP mail servers. We feel this is the next logical
step to minimize our users UCE/virus impact (we already tarpit, virus
scan, UCE scan, subscribe to RBL's, reject prior to SMTP close). =20
=20
=20
I'm looking for comments on whether this is generally seen as a positive
change or a waste of time (ie - will the next virus or worm gleam your
SMTP username and password from Outlook Express and use it to
replicate/SPAM)? =20
=20
=20
Is anyone aware of any well known mail clients that do not support SMTP
authentication (Unix, Windows or Mac)?
=20
Thanks in advance.
--Dan
=20
--
Daniel Ellis, CTO, PenTeleData
(610)826-9293
=20
"The only way to predict the future is to invent it."
--Alan Kay
=20
=20
------_=_NextPart_001_01C3F040.4F12EA5E
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
<html>
<head>
<meta http-equiv=3DContent-Type content=3D"text/html; =
charset=3Dus-ascii">
<meta name=3DGenerator content=3D"Microsoft Word 10 (filtered)">
<style>
<!--
/* Font Definitions */
@font-face
{font-family:SimSun;
panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
{font-family:"\@SimSun";
panose-1:2 1 6 0 3 1 1 1 1 1;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;}
span.EmailStyle17
{font-family:Arial;
color:windowtext;}
@page Section1
{size:8.5in 11.0in;
margin:1.0in 1.25in 1.0in 1.25in;}
div.Section1
{page:Section1;}
-->
</style>
</head>
<body lang=3DEN-US link=3Dblue vlink=3Dpurple>
<div class=3DSection1>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'>Greetings,</span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'>We’re a medium sized regional MSO/broadband =
provider
with 200k+ mailboxes, strongly considering enabling SMTP authentication =
on our
customer-facing SMTP mail servers. We feel this is the next =
logical step
to minimize our users UCE/virus impact (we already tarpit, virus scan, =
UCE
scan, subscribe to RBL’s, reject prior to SMTP close). =
</span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'>I’m looking for comments on whether this is =
generally
seen as a positive change or a waste of time (ie – will the next =
virus or
worm gleam your SMTP username and password from Outlook Express and use =
it to
replicate/SPAM)? </span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'>Is anyone aware of any well known mail clients that =
do not
support SMTP authentication (Unix, Windows or Mac)?</span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'>Thanks in advance.</span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'> --Dan</span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span =
style=3D'font-size:10.0pt;
font-family:Arial'> </span></font></p>
<p class=3DMsoNormal><font size=3D1 color=3D"#008040" face=3D"Times New =
Roman"><span
style=3D'font-size:7.5pt;color:#008040'>--</span></font></p>
<p class=3DMsoNormal><font size=3D1 color=3D"#008040" face=3D"Times New =
Roman"><span
style=3D'font-size:7.5pt;color:#008040'>Daniel Ellis, CTO, =
PenTeleData</span></font></p>
<p class=3DMsoNormal><font size=3D1 color=3D"#008040" face=3D"Times New =
Roman"><span
style=3D'font-size:7.5pt;color:#008040'>(610)826-9293</span></font></p>
<p class=3DMsoNormal><font size=3D3 face=3D"Times New Roman"><span =
style=3D'font-size:
12.0pt'> </span></font></p>
<p class=3DMsoNormal><font size=3D1 color=3D"#008040" face=3D"Times New =
Roman"><span
style=3D'font-size:7.5pt;color:#008040'> "The =
only way to
predict the future is to invent it."</span></font></p>
<p class=3DMsoNormal><font size=3D1 color=3D"#008040" face=3D"Times New =
Roman"><span
style=3D'font-size:7.5pt;color:#008040'> &nb=
sp; &nbs=
p;  =
; =
--Alan Kay</span></font></p>
<p class=3DMsoNormal><font size=3D3 face=3D"Times New Roman"><span =
style=3D'font-size:
12.0pt'> </span></font></p>
<p class=3DMsoNormal><font size=3D3 face=3D"Times New Roman"><span =
style=3D'font-size:
12.0pt'> </span></font></p>
</div>
</body>
</html>
=00
------_=_NextPart_001_01C3F040.4F12EA5E--
