[21418] in bugtraq
Re: poprelayd and sendmail relay authentication problem (Cobalt
daemon@ATHENA.MIT.EDU (Jason Clifford)
Mon Jul 9 19:55:04 2001
Envelope-To: bugtraq@securityfocus.com
Date: Mon, 9 Jul 2001 18:59:04 +0100 (BST)
From: Jason Clifford <jason@uklinux.net>
To: Chris Adams <cmadams@hiwaay.net>
Cc: <bugtraq@securityfocus.com>
In-Reply-To: <20010707150657.A31184@HiWAAY.net>
Message-ID: <Pine.LNX.4.30.0107091857530.22708-100000@s1.uklinux.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
On Sat, 7 Jul 2001, Chris Adams wrote:
> Better yet, have your POP daemon update the access file directly, and
> then you don't have any of the hokey "tail the log file" stuff going on
> at all. All you need to add is a daemon to remove entries from the
> access file.
All of which is an awful horrendous hack.
SMTP AUTH is fairly easy to implement. It's reliable. You don't have to
worry about IPs being accidentally left in a hash resulting in unwanted
relaying and you can properly trace the sender of mails.
Jason
