On Wed, 2 May 2001, JR Ponce de Leon wrote:
> 6d04h: %SEC-6-IPACCESSLOGP: list 101 denied tcp a.b.c.d (2208) ->
> x.y.z.w(113), 3 packets
a lot of mail servers will do a quick auth check to see who is connecting.
this helps them cut down on spam (ie forged attempts at sending mail). if
you are paranoid and want to keep it blocked (it's rarely been a security
problem, if ever, and bigger information leaks are out there), make sure
you send a TCP RST packet, rather than just dropping the connection
silently. this will speed up the mail delivery. sendmail, for example,
waits a few minutes by default for this timeout.
____________________________
jose nazario [EMAIL PROTECTED]
PGP: 89 B0 81 DA 5B FD 7E 00 99 C3 B2 CD 48 A0 07 80
PGP key ID 0xFD37F4E5 (pgp.mit.edu)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
