Security Basics mailing list archives
Re: Sender Spoofing via SMTP
From: "Gaddis, Jeremy L." <jeremy () linuxwiz net>
Date: Thu, 03 Nov 2005 19:46:41 -0500
brandon.steili () gmail com wrote:
Hi List, I know this is a common issue that does not seem to be well addressed, but I was hoping you folks could give some suggestions. (preferably for Exchange 2003) If I telnet to a system on the internet and perform the following:
[snip]Exchange 2003 will not relay by default (not sure about previous versions). If you want to have your mail servers tested to see if you are an open relay, telnet to "relay-test.mail-abuse.org" from the mail server itself. The remote server will connect back to your box on port 25 and run a series of tests that finishes up with a summary line of whether you're configured as an open relay.
Check Microsoft's TechNet archive as they have numerous articles on preventing others from using your Exchange servers as an open relay.
HTH, -j -- Jeremy L. Gaddis <jeremy () linuxwiz net> Senior Systems Engineer LinuxWiz Consulting "If it's not on fire, it's a software problem."
Current thread:
- Sender Spoofing via SMTP brandon . steili (Nov 03)
- RE: Sender Spoofing via SMTP Andrew Chong (Nov 04)
- Re: Sender Spoofing via SMTP Thierry Zoller (Nov 07)
- Re: Sender Spoofing via SMTP Ansgar -59cobalt- Wiechers (Nov 07)
- Re: Sender Spoofing via SMTP dallas jordan (Nov 04)
- Re: Sender Spoofing via SMTP FocusHacks (Nov 04)
- RE: Sender Spoofing via SMTP Muhammad Naseer Bhatti (Nov 04)
- Re: Sender Spoofing via SMTP Gaddis, Jeremy L. (Nov 04)
- Re: Sender Spoofing via SMTP Florian Streck (Nov 04)
- Re: Sender Spoofing via SMTP Barrie Dempster (Nov 04)
- Re: Sender Spoofing via SMTP Yousef Syed (Nov 07)
- Re: Sender Spoofing via SMTP Tomasz Nidecki (Nov 07)
- Re: Sender Spoofing via SMTP Tomasz Nidecki (Nov 07)
- <Possible follow-ups>
- Re: Sender Spoofing via SMTP jlopez2k5 (Nov 04)
- Re: Sender Spoofing via SMTP jalbuquerque (Nov 04)
- RE: Sender Spoofing via SMTP Tim Ballingall (Nov 04)
- RE: Sender Spoofing via SMTP Craig Wright (Nov 04)
- Re: Sender Spoofing via SMTP brandon . steili (Nov 04)
(Thread continues...)
- RE: Sender Spoofing via SMTP Andrew Chong (Nov 04)