Penetration Testing mailing list archives

Re: Securing Insecure SMTP

From: David Howe <DaveHowe.Pentest () googlemail com>
Date: Mon, 06 Oct 2008 09:42:34 +0100

Robert Marquardt wrote:

Hello Ahmed,

try rinetd: http://www.boutell.com/rinetd/

Kind regards,

Robert =)


surely if he needs to connect to the explicit smtps port, he would
*also* need to open a ssl tunnel for it? presumably something like

accept = 127.0.0.2:25
connect = <smtp server name>:465

in STunnel would work?


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in 
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------

Current thread:

Securing Insecure SMTP Ahmed Zaki (Oct 05)
- Re: Securing Insecure SMTP Robert Marquardt (Oct 05)
  - RE: Securing Insecure SMTP Iacob, George M (Oct 06)
  - Re: Securing Insecure SMTP David Howe (Oct 06)
- Re: Securing Insecure SMTP Danny Fullerton (Oct 06)
- Re: Securing Insecure SMTP Robin Wood (Oct 06)
- RE: Securing Insecure SMTP Shenk, Jerry A (Oct 06)
- Re: Securing Insecure SMTP Ahmad Taha (Oct 06)
- Re: Securing Insecure SMTP Zed Qyves (Oct 06)