Hi
Sorry for stupid question but I dont realy undarstand
I create test VPS (outside my infrastructure) and install all for
python3 for testing
root@hanz:~# python3 smtp_smuggling_scanner.py --sender-domain gmail.com
piot...@mydomain.ltd
[*] Getting MX record for domain: xxxxxx
[*] Running SMTP smuggling check!
[+] Sent smuggling e-mail for end-of-data sequence '\n.\n'! Check your
inbox!
[+] Sent smuggling e-mail for end-of-data sequence '\n.\r'! Check your
inbox!
[+] Sent smuggling e-mail for end-of-data sequence '\r.\n'! Check your
inbox!
[+] Sent smuggling e-mail for end-of-data sequence '\r.\r'! Check your
inbox!
[+] Sent smuggling e-mail for end-of-data sequence '\n.\r\n'! Check your
inbox!
[+] Sent smuggling e-mail for end-of-data sequence '\r.\r\n'! Check your
inbox!
[+] Sent smuggling e-mail for end-of-data sequence '\r\n\x00.\r\n'!
Check your inbox!
In my MX I use postfix-3.4.x and main.cf like:
...
smtpd_data_restrictions =
#postfwd
check_policy_service { inet:127.0.0.1:10040 timeout=2s,
default_action=DUNNO }
reject_unauth_pipelining,
reject_multi_recipient_bounce,
permit
smtpd_discard_ehlo_keywords = chunking, silent-discard
...
And I get all alow delivery without two test:
\\n.\\n
\\n.\\r\\n
Jan 8 13:03:29 maitest postfix/smtpd[21417]: improper command
pipelining after DATA from ipxxx.ip-87-98-xxx.eu[87.98.xxx.xxx]: From:
smugg...@gmail.com\r\nTo: piot...@domain.ltd \r\nSubject: SMUGGLED EMAIL
('\\n.\\n')\r\nDate: Mo
Jan 8 13:03:29 mailtest postfix/smtpd[21417]: 4T7t4d2GKnz3mhqr: reject:
DATA from ipxxx.ip-87-98-xxx.eu[87.98.xxx.xxx]: 503 5.5.0 <DATA>: Data
command rejected: Improper use of SMTP command pipelining;
from=<smugg...@gmail.com> to=<piot...@dimain.ltd> proto=ESMTP
helo=<gmail.com>
Jan 8 13:03:51 mailtest postfix/smtpd[21416]: improper command
pipelining after DATA from ipxxx.ip-87-98-xxx.eu[87.98.xxx.xxx]: From:
smugg...@gmail.com\r\nTo: piot...@domain.ltd\r\nSubject: SMUGGLED EMAIL
('\\n.\\r\\n')\r\nDate:
Jan 8 13:03:51 mailtest postfix/smtpd[21416]: 4T7t530077z3mhqs: reject:
DATA from ipxxx.ip-87-98-xxx.eu[87.98.xxx.xxx]: 503 5.5.0 <DATA>: Data
command rejected: Improper use of SMTP command pipelining;
from=<smugg...@gmail.com> to=<piot...@domain.ltd> proto=ESMTP
helo=<gmail.com>
Sorry its correct for "Short-term workarounds" ?
When I use domain with hard SPF reject - all was rejected (Rejected at
spf level)
[1] https://github.com/The-Login/SMTP-Smuggling-Tools.git
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
--
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
