On Mon, 2009-08-10 at 14:03 +0200, Thomas Liske wrote:
> if an access line like:
> 
> Connect:localhost               RELAY
> 
> turns a MTA into an Open Relay than I would prefere a DSA, since the
> ACL 
> implementation is broken IMHO.

As long as reverse DNS can be faked, I would never use hostnames in my
configuration files like that. If the debian package doesn't ship with
this ACL as default, I don't see reason for a DSA.


-- 
To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Reply via email to