Majordomo-Users: Re: outgoing aliases and protecting them

Majordomo-Users
(April 1994)

Indexed By Thread: [Previous] [Next]

Subject:	Re: outgoing aliases and protecting them
From:	Arnold de Leon <arnold @ Synopsys . COM>
Date:	Thu, 28 Apr 1994 14:18:47 -0700
To:	majordomo-users @ greatcircle . com
In-reply-to:	Andy Finkenstadt <genie@panix.com> "Re: outgoing aliases and protecting them" (Apr 28, 4:39pm)

Let me add that most configurations of sendmail do *not* record
envelope information in headers.  You should know what your system
does.  Sendmail V8 does by default but it also changeable.

In any case you are still vulnernable someone guessing the name of
your real outgoing list.  I suspect most majordomo servers are setup
following the examples.  This means most outgoing lists are named
"listname-outgoing".  

If you have private lists you can use "obscure" names for
the outgoing lists and just make sure that sendmail doesn't
reveal them.

I suspect that the best longterm fix is for majordomo
to open port 25 to some machine and send mail that way. 

	arnold

Indexed By Date	Previous:	Re: outgoing aliases and protecting them From: Andy Finkenstadt <genie@panix.com>
Indexed By Date	Next:	Re: outgoing aliases and protecting them From: "John P. Rouillard" <rouilj@terminus.cs.umb.edu>
Indexed By Thread	Previous:	Re: outgoing aliases and protecting them From: "John P. Rouillard" <rouilj@terminus.cs.umb.edu>
Indexed By Thread	Next:	Re: outgoing aliases and protecting them From: Arnold de Leon <arnold@Synopsys.COM>