'Re: rblsmtpd with relay-ctrl'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       qmail
Subject:    Re: rblsmtpd with relay-ctrl
From:       Mario_Salazar_Baños <mario.salazar () sysec ! com ! mx>
Date:       2007-03-08 20:16:43
Message-ID: 45F06F2B.4030201 () sysec ! com ! mx
[Download RAW message or body]

Matt Simpson escribió:
> At 7:00 PM 3/2/07, Fabio Busatto wrote:
>> if you're using SMTP-AUTH (the right
>> way to do smtp authentication in my opinion) you can patch your qmail 
>> with
>> the qmail-dnsbl (http://qmail-dnsbl.sourceforge.net/), that performs 
>> dnsbl
>> checks only if the user was not successfully authenticated.
>
> Or you can run another qmail-smtpd for authenticated users only, on 
> another port (preferably 587, since that's the standard), and not use 
> RBL on that port.  In my opinion, that's the right way to do smtp 
> authentication.  In today's world, it's becoming more likely that your 
> clients will be trying to connect through some ISP that is blocking 
> outbound port 25 to anything except their own servers. Whether that's 
> good or bad is still widely debated, but the reality is that it 
> happens.  Port 587 is your friend.
>
>
Thanks Matt, my foreing users can send email using port 587. I have a 
question, could be used to spam this port? or what is the benefit of use 
this port?


-- 

[Attachment #3 (multipart/related)]

[Attachment #5 (text/html)]

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
  <meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
Matt Simpson escribi&oacute;:
<blockquote cite="midp06240601c20e19204931@chowder.foxhunters.org"
 type="cite">At 7:00 PM 3/2/07, Fabio Busatto wrote:
  <br>
  <blockquote type="cite">if you're using SMTP-AUTH (the right
    <br>
way to do smtp authentication in my opinion) you can patch your qmail
with
    <br>
the qmail-dnsbl (<a class="moz-txt-link-freetext" \
href="http://qmail-dnsbl.sourceforge.net/">http://qmail-dnsbl.sourceforge.net/</a>), \
that performs dnsbl
    <br>
checks only if the user was not successfully authenticated.
    <br>
  </blockquote>
  <br>
Or you can run another qmail-smtpd for authenticated users only, on
another port (preferably 587, since that's the standard), and not use
RBL on that port.&nbsp; In my opinion, that's the right way to do smtp
authentication.&nbsp; In today's world, it's becoming more likely that your
clients will be trying to connect through some ISP that is blocking
outbound port 25 to anything except their own servers. Whether that's
good or bad is still widely debated, but the reality is that it
happens.&nbsp; Port 587 is your friend.
  <br>
  <br>
  <br>
</blockquote>
Thanks Matt, my foreing users can send email using port 587. I have a
question, could be used to spam this port? or what is the benefit of
use this port?<br>
<br>
<br>
<div class="moz-signature">-- <br>
<img src="cid:part1.00060402.05030604@sysec.com.mx" border="0"></div>
</body>
</html>


["mario_01.png" (image/png)]

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic