[69167] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: disabling SMTP

daemon@ATHENA.MIT.EDU (Rob Nelson)
Mon Mar 29 07:21:53 2004

Date: Mon, 29 Mar 2004 07:20:47 -0500
To: Richard Welty <rwelty@averillpark.net>, nanog@merit.edu
From: Rob Nelson <ronelson@vt.edu>
In-Reply-To: <Mahogany-0.66.0-20900-20040328-102244.00@averillpark.net>
Errors-To: owner-nanog-outgoing@merit.edu

>when smtp fixup is on (default on many older pixes, i gather that there
>may be some improvements on newer pixes), the smtp banner
>is mostly obscured by * characters. the intent is a classic security
>by obscurity play, to hide the type and verison of the MTA behind
>the pix.

Okay, so this is a problem when an SMTP server is hosted behind the PIX? I 
thought the fixup statements were for outbound connections, and with it on 
right now I get the full banner from SMTP servers. I don't host an SMTP 
server myself, so can't check that.

Rob Nelson
ronelson@vt.edu


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[69167] in North American Network Operators' Group

Re: disabling SMTP

daemon@ATHENA.MIT.EDU (Rob Nelson)Mon Mar 29 07:21:53 2004

daemon@ATHENA.MIT.EDU (Rob Nelson)
Mon Mar 29 07:21:53 2004