Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: smtp relay tester?

From: "Steven J. Sobol" <sjsobol () JustThe net>
Date: Tue, 25 Mar 2003 10:36:22 -0500 (EST)
On Mon, 17 Mar 2003, Dan Phan wrote:


mail from: me () anything com
250 OK - mail from <me () anything com>
rcpt to: anyone () anyone com
550 Relaying is prohibited

if you see:

550 Relaying is prohibited....

You are safe :)


Hardly. There are a lot of exploits for older versions of
various mail servers that allow attackers to get around the
restrictions. ordb.org, as someone else mentioned, is a good
place to start as is (IIRC) abuse.net. You don't want to run
one simple test, you want to run tests that check for all or
most of the exploits out there.

-- 
Steve Sobol/CTO/JustThe.net LLC/Mentor On The Lake (Cleveland), OH/888.480.4NET
"This country has a strong ethical foundation, but... I hesitate to say that 
erosion has set in, but it is clear that more and more of what we are is being
built on sand and not on that foundation."    - G. Waleed Kavalec, in SPAM-L


-------------------------------------------------------------------
SurfControl E-mail Filter puts the brakes on spam,
viruses and malicious code. Safeguard your business
critical communications. Download a free 30-day trial:
http://www.surfcontrol.com/go/zsfsbl1
Previous By Date Next
Previous By Thread Next

Current thread: