doug @
seas .
smu .
edu (Doug Davis) writes:
# >
# > David Brooks <0001000502 @
mcimail .
com> writes:
# >
# > # We would like to know if there is a good way to determine is someone is
# > # spoofing our mail gateway. Is there a "secure" smtpd or other software
# > # available that will detect/reject connections from someone pretending to
# > # be someone else?
# > #
# > # db
# >
# Brent Chapman <brent @
GreatCircle .
COM> writes:
#
# > In a word: no.
# In a word: yes. (we'll, partly)
#
#
# There are several varients of patches for both sendmail and smail3 that
# use the pident routines to identify spoofed mail. We use a version
# of smail3 which adds a nifty log record when the From: line doesn't
# match the pident account name. I've seen patches that add X-headers
# and other stuff as well. I'll share the smail3 patches with
# anyone who wants them. I don't have the sendmail patches, but thier
# location has rolled across the net a couple of times.
#
IF you trust IDENT. A lot of us don't, but that's another dead horse
I don't think we need to dig up and beat again. Anyone who's
interested in the past debate on IDENT can do a WAIS search for
"ident" on host WAIS.GreatCircle.COM, database "firewalls-digest", or
they can retrieve the pub/firewalls/topics/ident.Z file by anonymous
FTP from FTP.GreatCircle.COM).
-Brent
--
Brent Chapman | Great Circle Associates | Call or email for info about
Brent @
GreatCircle .
COM | 1057 West Dana Street | upcoming Internet Security
+1 415 962 0841 | Mountain View, CA 94041 | Firewalls Tutorial dates
|
|
