Hi Jess...
We have run into similar problems but last time with out Software.coms
Post.Office server. Our problem is that we can�t set the security as strict
as we need to because when frontpage and other scripts need to send mail
using our SMTP server that is viewed upon as relaying as well. Therefore we
need to allow for the local domains to relay which of course makes the
server vulnerable again... not as much but still....
So for your wish feature below I think it would be hard to define what is
let�s say frontpage sending mail (relaying legally) and somebody actually
trying to Spam. Or am I wrong? I guess if you don�t need to have other
programs relay mail then you can totally shut relaying off and then the
feature would be useful but at that point I guess the mail server would not
relay anyway...
Johan
At 07:34 AM 6/4/99 -0700, you wrote:
>It would be nice to add a checkbox to smtp security called 'notify
>administrator of unauthorized relay attempts'
>
>You all are probable tired of hearing about MAPS, ORBS, etc... but I'll
>mention it again. Imail is *great* but lacking the flexibility
>administrators coming from UNIX are used to having.
>
>-----Original Message-----
>From: Jess Coburn <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
>Date: Friday, June 04, 1999 6:31 AM
>Subject: [IMail Forum] getting out of IMRSS open relay list
>
>
>Recently our mail server had relay open (didn't close it after
>a upgrade, DOH!) and we got hit by a spammer (mail logs went
>from a daily 14KB to 30MEGABYTES for ONE DAY!). At any rate,
>I shut down the relay, cleared the queue and began the damage
>control process. I was listed on three of the open relay
>blackhole lists and still can't get off the IMRSS one.
>
>Surely someone else has had this problem. What needs to be
>changed other than 'allow no relaying' so that I can get off
>this darn list! FYI, found out I was on this list from
>www.samspade.org by doing a blackhole list search..
>
>Thanks for any help,
>Jess
>
>ps can you believe I only had my server up 2 months and had only
> 3 domains active on this thing and the guy actually found us!
> JEEZ!!!!!!!
>
Ballou Internet Services
USA: http://www.ballou.net
Scandinavia: http://www.se.ballou.net
E-mail: [EMAIL PROTECTED]
