I think this isn't a security flaw but by design, since the recipient is in the domain the server is responsible for it accepts and sends the mail. Your server does not appear to allow relaying outside your domain, which is good. It would be a bad thing if it would accept rcpt to: [EMAIL PROTECTED] when helo is sent from outside your domain.
I am not sure about this, but i think that if you would block this you are not gonna be able to receive mail at all. Bob ten Berge deVisie automatiseringsdiensten > -----Oorspronkelijk bericht----- > Van: Stuart Pittwood [mailto:[EMAIL PROTECTED]] > Verzonden: woensdag 21 november 2001 12:14 > Aan: MS-Exchange Admin Issues > Onderwerp: relay problems > > > > I've just tested our mail server with www.abuse.net/relay.htm > > and on test 8 it appears to fail. > > >>> RSET > <<< 250 2.0.0 Resetting > >>> MAIL FROM:<[EMAIL PROTECTED]> > <<< 250 2.1.0 [EMAIL PROTECTED] OK > >>> RCPT TO:<"[EMAIL PROTECTED]"> > <<< 250 2.1.5 "[EMAIL PROTECTED]"@kingswinford.dudley.sch.uk > Although our server doesn't relay the message it accepts it and > generates an NDR, our ISP is refusing to allow us access to > their smtp & > pop3 servers until this is closed. How do I solve this one > in Exchange > 2000 > Thanks > Stu > > > List Charter and FAQ at: > http://www.sunbelt-software.com/exchange_list_charter.htm > > List Charter and FAQ at: http://www.sunbelt-software.com/exchange_list_charter.htm
