Think I've solved my problem. I set the relay option for Allow Relay for
Addresses and included our server IP addresses. Then I also clicked on
Control Access and set to Deny access to all but our server IP address.
Now all our internal sends go out properly, even our recommend this site to
a friend web link when a user fills in his email address and a friend's
email address and neither are local addresses.
Now even those with our local email addresses cannot send mail via SMTP
unless they use some other SMTP server.
This setup only works if both Relay for Addresses is set to allow the server
IPs AND Control Access is set to deny all but server IPs.
Unless I'm missing someting, this is a great security setup for anyone using
Imail in a situation like providing free email where the user already has
dialup acess with a service provider and simply wants a "vanity" email
address we might offer.
Now, what about the web interface? Is this too inconvenient for spammers to
send mass mailings, or are their major security issues here as well?
Regards,
Joe
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Joe Reynolds
Sent: Tuesday, March 14, 2000 2:02 PM
To: [EMAIL PROTECTED]
Subject: RE: [IMail Forum] Getting Spammed to death...
Dusty, I've looking at this some more. We have a page where a user can
recommend our site to a friend. The user fills in his email address and his
friend's. This won't work with Imail set to Local Host or to Local
Addresses. We used NTMail and this permitted such internally generated
messages to go through, even though Relay was off except for our own IP
number.
What I was hoping was that Imail had a similar setup whereby No Relay would
not allow relay of externally generated messages to be sent, but would send
internally generated messages.
Regards,
Joe
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of ## Dusty Carden
Sent: Tuesday, March 14, 2000 12:55 PM
To: [EMAIL PROTECTED]
Subject: RE: [IMail Forum] Getting Spammed to death...
Set to Local Host Only will allow anyone that uses username@domainname
to relay through your box. Simple as changing the e-mail address in their
mail client/spamware. No Relay will mean that your users will have to
use another box to send e-mail. Relay for Addresses with only local
addresses allowed usually works pretty good. Anyone outside of those
address ranges will have to use SMTP Auth to send mail. Works for
me anyway.
Dusty
At 11:32 AM 03/14/2000 -0500, you wrote:
>Dusty, perhaps you can clarify something for me. I've looked at the docs
and
>still am a little confused.
>
>1. If we set to allow no relay, does that solve spam problems entirely?
>
>2. What is extent of security when set to Local Hosts Only?
Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.
----------------------------------------------
Visit Outdoors Network at http://www.outdoors.net
Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.
Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.
