Re: closing exims open relay - something to do with the percent hack

To: Shri Shrikumar <shri@urbyte.com>
Cc: debian-isp@lists.debian.org
Subject: Re: closing exims open relay - something to do with the percent hack
From: Donovan Baarda <abo@minkirri.apana.org.au>
Date: 02 Jul 2003 10:42:23 +1000
Message-id: <[🔎] 1057106543.645.5.camel@schizo>
In-reply-to: <[🔎] 1057072178.925.70.camel@VISHNU.INTERNAL>
References: <[🔎] 1057072178.925.70.camel@VISHNU.INTERNAL>

On Wed, 2003-07-02 at 01:09, Shri Shrikumar wrote:
> Hi,
> 
> I just did an open relay test on one of my servers and to my surprise
> found that it in an open relay. In particular, it accepts emails to the
> form of
> 
> someone%somewhereelse.com@here.com
> 
> where here.com is a local domain within exim.

Check the bug reports on exim. There is a case where a stock standard
Debian install of exim (and possibly postfix) can turn out to be an open
relay.

What happens is the the "satellite" email server blindly forwards email
to the smart-host, and the smart-host blindly trusts the satellite
system because it's within the trusted domain. Between the two of them
they become an open relay. 

-- 
Donovan Baarda <abo@minkirri.apana.org.au>
http://minkirri.apana.org.au/~abo/

Reply to:

Follow-Ups:
- Re: closing exims open relay - something to do with the percent hack
  - From: Shri Shrikumar <shri@urbyte.com>

References:
- closing exims open relay - something to do with the percent hack
  - From: Shri Shrikumar <shri@urbyte.com>

Prev by Date: Re: Webmail configuration for schools
Next by Date: Re: Woody Stable and Kernel 2.4.21
Previous by thread: Re: closing exims open relay - something to do with the percent hack
Next by thread: Re: closing exims open relay - something to do with the percent hack
Index(es):
- Date
- Thread