Firewalls: Re: firewalls, email, and dns

Firewalls
(February 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: firewalls, email, and dns
From:	"Richard L. Snow" <rich @ aoainc . com>
Date:	Wed, 7 Feb 96 17:01:04 -0400
To:	"Lehrer, Neil" <nlehrer @ usia . gov>, firewalls @ GreatCircle . COM

>hi,
>
>our smtp mail server is an smtp/mhs gateway that runs on DOS.  since it 
>does not have the traditional sendmail vulnerabilities can I/should I 
>allow smtp traffic through a firewall []

Well, it's pretty easy to use a mail forwarder such as SMAP in the TIS
firewalls toolkit. If your firewall is unix you can replace the sendmail
daemon with this program which is short enough that you could actualy figure
out what the code is doing.

The traditional argument is that if the program is complex enough that you
can't tell what it's behavior will be, then there is a high risk there is a
hole in there which you don't know about.

-Rich
                                                    
Rich Snow   rich @
 aoainc .
 com     (617)864-0201
-----------------------------------------------*
Adaptive Optics Associates, Inc.
54 Cambridgepark Dr., Cambridge, MA. 02140

Indexed By Date	Previous:	Re: Survey From: Sten Drescher <stend @ grendel . texas . net>
Indexed By Date	Next:	Firewalls Product Comparison From: pcuser @ slip67-241 . ny . us . ibm . net
Indexed By Thread	Previous:	firewalls, email, and dns From: "Lehrer, Neil" <nlehrer @ usia . gov>
Indexed By Thread	Next:	ipx routing From: "Lehrer, Neil" <nlehrer @ usia . gov>