This is more of a policy issue in my mind. If it was me I would enforce certain conditions be met if someone want me to be a backup server for them.
<caveat> this is my own opinion from my days as a mail admin. I am not telling you the recommended things to do</caveat> Eric S ----- Original Message ----- From: "Chuck Cahill" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, May 30, 2002 4:38 PM Subject: [IMail Forum] Open relay problem with Imail > Not sure if anyone has addressed this problem and if so, I apologize for > the redundancy. I administer an IMail server for three domains, a > collection of hospitals. One hospital flat out refuses to let us > administer their users / domain and maintains their own Mail > machine. Herein lies the problem, our machine accepts mail for > Subdomain.domain.com without regard to valid address and fails several Spam > Test. Log show results. > > 05:30 14:39 SMTPD(0065017E) [207.8.111.37] connect 12.147.50.55 port 54136 > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] HELO prodigysolutions.com > > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] MAIL > FROM:<[EMAIL PROTECTED]@Subdomain.domain.com> > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] RCPT > TO:<[EMAIL PROTECTED]> > > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] MAIL > FROM:<[EMAIL PROTECTED]@Subdomain.domain.com> > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] RCPT > TO:<[EMAIL PROTECTED]> > > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] MAIL > FROM:<[EMAIL PROTECTED]@Subdomain.domain.com> > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] RCPT > TO:<[EMAIL PROTECTED]@Subdomain.domain.com> > > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] MAIL > FROM:<[EMAIL PROTECTED]@Subdomain.domain.com> > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] RCPT > TO:<"[EMAIL PROTECTED]"@Subdomain.domain.com> > > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] MAIL > FROM:<[EMAIL PROTECTED]@Subdomain.domain.com> > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] RCPT > TO:<[EMAIL PROTECTED]@Subdomain.domain.com> > > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] MAIL > FROM:<[EMAIL PROTECTED]@Subdomain.domain.com> > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] RCPT > TO:<@Subdomain.domain.com:[EMAIL PROTECTED]> > > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] MAIL > FROM:<[EMAIL PROTECTED]@Subdomain.domain.com> > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] RCPT > TO:<[EMAIL PROTECTED]> > > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] MAIL > FROM:<[EMAIL PROTECTED]@Subdomain.domain.com> > 05:30 14:39 SMTPD(0065017E) [12.147.50.55] RCPT > TO:<[EMAIL PROTECTED]> > > I have no doubt, once their machine receives the bogus email, it would > forward what it was sent. They are currently using a program, Postal Union > for Microsoft Mail. Believe me, I've begged and pleaded and they still > will not let me maintain their domain on my server. > > My current problem is this, how do I secure email passing thru IMail so we > don't become the unsuspecting relay host for spam. > > I've place current restrictions on no more than 25 recipients per message > but this still doesn't solve the problem. I also monitor the log files on a > daily basis but I want to close the doors before the problems occurs. > > Chuck Cahill > Manager, Informational Systems > > > ******************************** > Visit us at www.yfcs.com > ******************************** > > Please visit http://www.ipswitch.com/support/mailing-lists.html > to be removed from this list. > > An Archive of this list is available at: > http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ > > Please visit the Knowledge Base for answers to frequently asked > questions: http://www.ipswitch.com/support/IMail/ > Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Please visit the Knowledge Base for answers to frequently asked questions: http://www.ipswitch.com/support/IMail/
