> 2) If you follow the instructions from IPSWITCH for making a backup > mail server you very likely will have acl permitted for the backup > server and you will be vulnerable.
That doesn't follow. The store-and-forward instructions in the KB make no mention of letting your primary relay for your backup. A sysadmin who is familiar with multihop relaying should know that they are creating one if they allow relaying of this sort. > I suppose that might be possible as a corrective measure in certain > situations but surely not all. In what situations would relaying for the backup be a requirement? Remember, the purpose of a backup MX is to mailbag and/or deliver mail destined for your domain. It isn't a "backup SMTP relay" for your users, at least not by design. I do think there should be a disclaimer or warning in the KB/manual, but more as a courtesy, since Eric's post clarified that this is not actually an Imail bug. -Sandy Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Please visit the Knowledge Base for answers to frequently asked questions: http://www.ipswitch.com/support/IMail/
