Great Circle Associates Firewalls
(April 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Stopping Fakemail (smtpd-port25)
From: Ian Miller <firewalls @ scientia . com>
Date: Wed, 24 Apr 1996 12:20:46 +0100
To: firewalls @ greatcircle . com 
At 14:53 20/04/96 -0400, you wrote:
>However, we have a problem with people sending fakemail with the smtp
>daemon, by telnetting to port 25 and manually sending mail.  Obviously we
>can not stop people from telnetting to sites off campus, but is is possible
>to stop it on campus?  So far, no solutions have been found.  Any
>help/suggestions would be greatly appreciated, if it is even possible.
>
The problem with any server based solution is that it is only applies to
your own server, and not to the countless thousands of other servers that
could store and forward to your server.  It is only a small step in
sophistication from telnetting to port 25, to finding a less paraniod SMTP
server to use.  Once a faker has got to that level of sophistication nothing
automatic will stop them.
Your only hope is to find a way of detecting them at it and persuading them
to desist.  I would suggest logging all out-going connections to port 25. 

Ian
Indexed By Date Previous: Actually, in terms of shear numbers, Checkpoint sold about 3,000 units last year. However, you
From: Kevin Nelson <knelson @ essi . com>
Next: Netscape Certificate Server
From: Karl Janice <KJanice_+a_NYPP_+lKarl_Janice+r%NYPP @ mcimail . com>
Indexed By Thread Previous: Re: Stopping Fakemail (smtpd-port25)
From: Stefan Gal <sgaul @ prolog . net>
Next: Re: Stopping Fakemail (smtpd-port25)
From: Brian Dorricott <brian @ net-shopper . co . uk>
Google
 
Search Internet Search www.greatcircle.com