Re: [FW-1] Bad SMTP Header

[Lars Troen]

Title: Bad SMTP Header

I don't know what FP level you are, but atleast on FP2 the smtp security server isn't quite good, although I've seen it survive those requests you mention here. The particular problem with FP2 is with the ESMTP command SIZE that prevents mail from some ESMTP servers (e.g. MailSweeper) to be accepted (without any log trace) on FW1.

 

Lars

-----Original Message-----
From: TUEN KONG HOONG, CSIPD [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 16, 2002 10:18
To: [EMAIL PROTECTED]
Subject: Re: [FW-1] Bad SMTP Header

To illustrate the problem further:

 

Case #01

Mail From: <>

From: Mail Delivery Subsystem <MAILER-DAEMON<>>

This causes firewall to coredump and all the mails being stucked at /etc/fw/spool

Case #02

Mail From: <>

From: Mail Delivery Subsystem <MAILER-DAEMON@hotmail.com>

No problem at all.

Case #03

Mail From: <[EMAIL PROTECTED]>

From: <blah blah blah some rubbish>

This cause firewall to coredump and all the mails being stucked at /etc/fw/spool

In all 3 cases, recipients are valid.

-----Original Message-----
From: Lars Troen [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 16, 2002 3:42 PM
To: [EMAIL PROTECTED]
Subject: Re: [FW-1] Bad SMTP Header

The bad smtp header probably relates to smtp messages that are sendt through a http proxy server. This is usually spam and it will send a http request at the beginning of the mail. I have not confirmed that this issue causes that particular message in the smtp security server (not using it), but other mail servers have similar messages for such mails.

 

Lars

 

-----Original Message-----
From: TUEN KONG HOONG, CSIPD [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 16, 2002 04:10
To: [EMAIL PROTECTED]
Subject: [FW-1] Bad SMTP Header

Hi all,

Seems like NG smtp security server is unable to handle bad or malformed smtp header? Does anyone has a solution?

Regards,

Tuen
This communication contains confidential or privileged information. If you are not the intended recipient, please notify us IMMEDIATELY that you have received it and destroy it. We are not liable for any unauthorised sending of or interference with this communication.

This communication contains confidential or privileged information. If you are not the intended recipient, please notify us IMMEDIATELY that you have received it and destroy it. We are not liable for any unauthorised sending of or interference with this communication.