Full Disclosure mailing list archives
Re: Backdoor not recognized by Kaspersky
From: Nick FitzGerald <nick () virus-l demon co uk>
Date: Thu, 04 Mar 2004 19:57:08 +1300
Michael Gale <michael () bluesuperman com> wrote: <<OK stuff snipped>>
Also do not except mail for users that do not exist ... I know that a lot of Exchange servers and mis-configured front end mail servers accept mail for anything at there domain and usually if the mail is junk or from domains that do not exist.
<<snip>>
These are some starting points, making sure that the email follows the RFC's also help.
Hmmm -- you realize that a lot of the behaviour you chastise in your first point is because the systems involved are, in fact, being terribly compliant mail _relays_ as defined in the RFCs?? Perhaps you should follow your own advice a tad longer before deciding to solve the rest of the world's problems... However, I'm pleased you didn't jump right in and advocate SPF and its in-bred, red-neck cousins... Regards, Nick FitzGerald _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: Backdoor not recognized by Kaspersky, (continued)
- Re: Backdoor not recognized by Kaspersky Gregor Lawatscheck (Mar 03)
- Re: Backdoor not recognized by Kaspersky Cael Abal (Mar 03)
- Re: Backdoor not recognized by Kaspersky Bart . Lansing (Mar 03)
- Re: Backdoor not recognized by Kaspersky Cael Abal (Mar 03)
- Re: Backdoor not recognized by Kaspersky Gregor Lawatscheck (Mar 03)
- Re: Backdoor not recognized by Kaspersky Valdis . Kletnieks (Mar 04)
- Re: Backdoor not recognized by Kaspersky Gregor Lawatscheck (Mar 03)
- RE: Backdoor not recognized by Kaspersky Aditya, ALD [Aditya Lalit Deshmukh] (Mar 03)
- RE: Backdoor not recognized by Kaspersky Ron DuFresne (Mar 03)
- Re: Backdoor not recognized by Kaspersky Rodrigo Barbosa (Mar 03)
- Re: Backdoor not recognized by Kaspersky Michael Gale (Mar 03)
- Re: Backdoor not recognized by Kaspersky Nick FitzGerald (Mar 03)
- SMTP open relays and RFC (was: Backdoor not recognized by Kaspersky) Martin Mačok (Mar 04)
- Message not available
- Re: Backdoor not recognized by Kaspersky Rodrigo Barbosa (Mar 04)
- RE: Backdoor not recognized by Kaspersky Nick FitzGerald (Mar 03)
- Re: Backdoor not recognized by Kaspersky Alexander MacLennan (Mar 03)
- RE: Backdoor not recognized by Kaspersky Nick FitzGerald (Mar 03)
- SMTP rejecting wrong HELO/EHLO domains will save the world (was: Backdoor in passworded ZIP not recognized by Kaspersky) Martin Mačok (Mar 03)
- Re: Backdoor not recognized by Kaspersky Valdis . Kletnieks (Mar 04)
- Re: Backdoor not recognized by Kaspersky Nick FitzGerald (Mar 03)