Does 6.03 fix this? Has Ipswitch issued *any* response?
Thanks,
Kelly Britt
"Need A Dot Com?"
____________________________________________________
[EMAIL PROTECTED] http://www.needa.com 770-663-1535
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Anthony Santen
> Sent: Tuesday, March 21, 2000 6:15 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [IMail Forum] SMTP security in Imail 5.x
>
>
> Scot,
> We're collecting customers who have this problem, as IPSWITCH claims it's
> NOT them, but everyone else.
>
> We have conclusively tested and proved that the problem 'goes away' if you
> use another software for SMTP AUTH.
>
> The problem lies in one of the following problems (or a combination)
>
> - File locking of IMAILSEC.DLL
> - Thread contingency within IMAILSEC.DLL
> - Timing issues regarding username - password table lookup
> - Resource locking during another operation
>
> We have now finally had to give up and use Sendmail for outgoing
> mail relay.
> Not pretty, but highly efficient.
>
> Anthony Santen
>
>
> ----- Original Message -----
> From: "Scot Desort" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Tuesday, March 21, 2000 5:05 PM
> Subject: [IMail Forum] SMTP security in Imail 5.x
>
>
> > We are running Imail 5.x. We have all along had SMTP relay
> security set to
> > relay for our IP blocks, and AUTH enabled for hosting customers who are
> > off-net.
> >
> > Suddenly, we had a rush of Netscape Messenger/Mail clients who suddenly
> > where being asked to enter their password to send mail out. Going to the
> > Ipswitch KB, this is a known issue. The fix is to disable AUTH. This
> creates
> > a problem for our off-net hosting customers.
> >
> > I started to play around with the "relay mail for local users" choice.
> > Instead of restricting access by IP block, this would allow off-net
> hosting
> > customers to use our SMTP server, yet still prevent that AUTH error with
> > netscape.
> >
> > This is not an ideal solution, though. It still opens us up by allowing
> > someone to relay mail through us by simply specifying a valid user name.
> >
> > Has any else run across this situation? Is there a better way
> of handling
> > this? A new problem with this fix has cropped up. We outsource
> some of our
> > DSL. These customer often have their own mail servers. We now have to
> enter
> > those mail hosts and IP addresses into the accept.txt file. And
> since the
> > file does not take wildcards, well, you can see the problem
> becoming quite
> > cumbersome.
> >
> > Any thoughts??
> >
> > --
> > Scot
> >
> >
> > Please visit http://www.ipswitch.com/support/mailing-lists.html
> > to be removed from this list.
> >
>
> Please visit http://www.ipswitch.com/support/mailing-lists.html
> to be removed from this list.
>
Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.
