> Currently my people using email do have to VPN in so that isn't a
> problem.
That's great, all you have to do is disable anonymous relaying
> The barracuda is just for filtering spam coming in I don't
> think I have it relaying mail out.
Maybe you don't use it for relaying, but it clearly does support it (with
the only stipulation being that the envelope from must include
@lmsintellibound.com). How else could I have just sent a mail through
your server to an arbitrary recipient? There's clearly no check on the
senders IP address or any lookup beyond the domain to see if a sender is
authorized to relay.
Show the below to your barracuda support channel and they should be able
to tell you how to prevent that. While you're at it make sure your
barracuda is not configured to backscatter (this was default in older
models). From another mailing list:
On the Barracuda Spam Firewall, the option to turn
spam bouncing off can be found in the Basic Tab under
Spam Scoring. Near the bottom there is a check box
for "Send Bounce." This is checked by default and
should be unchecked.
> ============================================================
> 220 barracuda.mail.lmsintellibound.com ESMTP Service ready
> helo lmsintellibound.com
> 250 Requested mail action okay, completed
> mail from: administra...@lmsintellibound.com
> 250 Requested mail action okay, completed
> rcpt to: xxxxx...@gmail.com
> 250 Requested mail action okay, completed
> data
> 354 Start mail input; end with <CRLF>.<CRLF>
> To: xxxxx...@gmail.com
> From: administra...@lmsintellibound.com
> Subject: Sent from an open relay
>
> Testing out the body
> cheers
> .
> 250 Requested mail action okay, completed
> quit
>
> ------------------------------------------------------------
> Found in a mailbox moments later...woops
> ------------------------------------------------------------
>
> Delivered-To: xxxxx...@gmail.com
> Received: by 10.231.16.65 with SMTP id n1cs224076iba;
> Wed, 30 Sep 2009 07:22:15 -0700 (PDT)
> Received: by 10.224.8.136 with SMTP id h8mr5707464qah.25.1254320534533;
> Wed, 30 Sep 2009 07:22:14 -0700 (PDT)
> Return-Path: <administra...@lmsintellibound.com>
> Received: from barracuda.mail.lmsintellibound.com
> (mail.lmsintellibound.com [66.64.158.244])
> by mx.google.com with ESMTP id
> 27si8524489ywh.104.2009.09.30.07.22.14;
> Wed, 30 Sep 2009 07:22:14 -0700 (PDT)
> Received-SPF: pass (google.com: best guess record for domain of
> administra...@lmsintellibound.com designates 66.64.158.244 as permitted
> sender) client-ip=66.64.158.244;
> Authentication-Results: mx.google.com; spf=pass (google.com: best guess
> record for domain of administra...@lmsintellibound.com designates
> 66.64.158.244 as permitted sender)
> smtp.mail=administra...@lmsintellibound.com
> To: xxxxx...@gmail.com
> From: administra...@lmsintellibound.com
> Subject: Sent from an open relay
> Message-Id:
> <20090930142153.4f3d923b...@barracuda.mail.lmsintellibound.com>
> Date: Wed, 30 Sep 2009 10:21:53 -0400 (EDT)
>
> Testing out the body
> cheers
> ============================================================
~JasonG
