> > Currently when I set "relay for address" on my server,
> To me this setting is not very useful unless there was a limited number of
IP's to include
> in the list.
That's right. That is why you use SMTP AUTH for anyone that is not on that
list of IPs. That way all your customers can use your mail server, but
spammers can not.
> I just went ahead and set it up for local hosts only.
Why bother? Why not just have no security at all?
With no security, a spammer will hijack your mail server and send spam that
appears to be from [EMAIL PROTECTED] Your ISP and a handful of others will
hound you to close your open relay.
But, if you use "local hosts only", you are forcing spammers to use
[EMAIL PROTECTED] as the return address. Now, all the recipients will see
your domain in the "From:" field, and will send mail to you. That's going
to be even more work to fix.
But, either way, it's very likely that after the next attack on your server,
you will be forced to secure your server. Why not do it before the attack
rather than afterwards? If you run a bank, and all the other banks in town
are getting robbed, would you wait until after the robbers got you before
hiring a security guard?
-Scott
Declude: Anti-spam and Anti-virus solutions for IMail.
http://www.declude.com
Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.
An Archive of this list is available at:
http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
