Sunny Azah wrote:
> If you're concerned about someone taking a free ride on your
> SMTP server, then that's a different issue. A much better approach
> to address this problem is to have the SMTP server compare
> the mail's destination against the system sending it the mail.
> If the destination is foreign (outside the local network),
> and the source is also foreign, then refuse to accept the message.
> This prevents someone from the outside network from using your
> SMTP server to deliver mail outside your network, and it does
> it in a way which which doesn't break the SMTP protocol.
> This should be an option, since a feature like this will create problems
> for some sites.
Does anyone know of any mail system or firewall that implements this? I
seem
to remember that Microsoft Exchange server's SMTP gateway allows you to
do
this, which is hilarious considering Microsoft's poor reputation for
security.
--------------------------------------------------------------------------
Phil Trubey | Manufacturers of
NetPartners Internet Solutions, Inc. | WebSENSE
E-mail: phil @
netpart .
com | Internet Screening System
Phone: 619-505-3041 | http://www.netpart.com/
--------------------------------------------------------------------------
Follow-Ups:
References:
|
|
