[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: fooling MTAs.
On Wed, 27 Aug 1997, Peter wrote:
> >body and envelope
>
> Ok, I know that. And I can almost understand about the thing about the
> SMTP server friendlily warning about 'may be spoofed'. What I don't
> understand is, why does it accept the message if the From: domain is not
> the same as the IP of the incoming connection resolved by the name server
> ?! Normally I would enforce dropping connections with the From: domain not
> resolving to the sender IP (or an accepted sender from an ACL).
This probably isn't a good idea since many hosts (such as my home box) use
mail relays. That is - my qmail never sends any e-mail directly, but
forwards them all to a fast SMTP server near me, so that if I want to
connect in the middle of the day to upload mail I wrote, I don't have to
wait ages for qmail to connect to all the hosts I sent mail to, which may
be at the other end of the world, the universe and everything - but rather
to connect to the fast SMTP server which will forward the e-mails to their
destinations in its free time.
And what about Windows boxes? SMTP servers are rare animals on typical
Windows users' PPP-connected machines. They all put an SMTP server in the
configuration for their mail programs, and all the outgoing mail goes
through it.
---------------------------------------------------------------------
Alex Shnitman <alexsh@linux.org.il> // http://alexs.home.ml.org
---------------------------------------------------------------------