>>> [EMAIL PROTECTED] 04.06.2000 13.35 Uhr >>>
>hello gurus :),
>
>'m using PIX 520 with soft release 5.0(3). PIX protects different servers
>in several DMZs, but among them there are some mail servers. When I'm
>connecting from outside (say, internet) to these servers via telnet to 25
>port (smtp), i'm getting strange welcome messages, looking like this:
>
>220
>****************************************************************************
>***************************
>(.................)
>_________________________________________
>Arkadiusz Majer
>TP.Internet
>e-mail: [EMAIL PROTECTED]
>phone: +48 22 850 92 50
>fax: +48 22 850 92 51
Hello Arkadiusz,
this is a security feature of the PIX-Firewall. Some SMTP-Servers give
information about themselfes at this point (like Version Number etc.). This
might be considered as a security risk, as this gives information to the
hacker that he can use to attack your mail server. PIX replaces this row
by "x". Also the PIX filters SMTP commands. It only allows 6 out of about
15 SMTP commands. If you dont want these features simply discard the
"fixup protocol smtp 25" line. I wouldnt recommend that, though.
Best regards
Sascha
--------------------------------------------------------------------------------
Sascha Weigelmann Email: [EMAIL PROTECTED]
Tel.: +49 6172-288-383
Mobil 0170-5778857
Fax: +49 6172-288-402
ADS System AG http://www.ads.de
Siemensstr. 25a
D-61352 Bad Homburg
The Network Service Company
--------------------------------------------------------------------------------
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
