On Sun, 21 Apr 1996, mulligaj wrote:
> At 06:57 AM 04/21/96, you wrote:
> > 1) Run ident daemon on all your machines.
> > 2) Write a custom sendmail reciever in perl (we did it)
> > 3) Use the ident check on incoming mail from on-campus
> > and detect mail coming from non-authorized accounts
> > (usually not root, postmaster, etc.)
> > 4) Attach the ident information to the headers so that full
> > details of the source comes through in the mail message.
> > OR
> > 4) refuse to forward mail unless the ident check comes back right.
> wouldnt it be a problem that most of the mail is sent from PC's with some in
> windows and some dos? Some are in labs and some are PC owned by students in
> their rooms?
I am currently working with a customer with exactly this problem.
Pine, Eudora, Netscape all rely on the "preference" setting for the name
and address of the sender. They have had students masking as teachers
sending mail. Some of this mail is of a nature banned by the AUP of the
site in question. It has caused much grief. I would love to have a
solution as well, but IDENTD is not it. Far too easy to spoof. and in
the case of a PC, I just set it to whatever I want to return.
Remember, the PC/Windoze platform is *not* secure (yet)
Electus Technology Inc. / Loma Linda University Medical Center
San Bernardino, California. (909)799-8308 |Internet: baumann @