>Recent SPAM attacks to my IMail server forced me to shut down the
>"relay to anyone" option on the SMTP Security options.
no kidding!!
>Since then POP3 accounts can not send mail...
>"The message could not be sent because one of the recipients was
>rejected by the server. The rejected e-mail address was
>'[EMAIL PROTECTED]'. Subject 'test', Account: 'Andre', Server:
>'server.com', Protocol: SMTP, Server Response: '550 not local host
>host.com, not a gateway', Port: 25, Secure(SSL): No, Server Error:
>550, Error Number: 0x800CCC79"
>any wise advice?... anyone?...please...
With Imail, you only have exactly one 'relay option' setting that's
secures Imail against relay hijacking: "relay for addresses", and
enter your "trusted" ip blocks. Since the better class of spammers
know who to spoof ip addresses, your gateway/border router must be
setup to block spoofing of your 'inside' addresses.
In Imail, UNcheck SMTP AUTH reporting. This requires anybody wanting
to relay mail (send mail to non-Imail domains) to have successfully
logged in with their account name and password, preferably CRAM-MD5
rather than LOGIN cleartext. When the login is successful, Imail will
log a line something like 'treated as local', meaning Imail trusts
this connection and will relay all mail, rather than give the fatal
error of '550 not local host host.com, not a gateway'.
All of your mail users will have to set their mail programs, "SMTP
server for sending mail" to login.
Len
http://BIND8NT.MEIway.com: ISC BIND 8.2.2 p5 installable binary for NT4
http://IMGate.MEIway.com: Build free, hi-perf, anti-spam mail gateways
______________________________________________________________________
The HKSI-IMail Admin List is hosted by........ Humankind Systems, Inc.
Questions, Comments or Glowing Praise...... mailto:[EMAIL PROTECTED]
Searchable List Archive.... http://www.mail-archive.com/[email protected]
To Manage your Subscription......... http://humankindsystems.com/lists
