On Tue, 2 May 2000, John White wrote:
> On Tue, May 02, 2000 at 12:25:14PM -0500, Jeff Hayward wrote:
> > On Tue, 2 May 2000, Gareth Harper wrote:
> >
> > 1) His first requirement was to only allow relaying if the user had one
> > of his hosted domains as the From: line of an email. I've told him what
> > a bad idea this is but there's no persuading. So is there anyway to do
> > this but only when the mail has to be relayed? I'd guess we'd need a
> > patch to smtpd. Please don't tell me what a bad idea this is - I know.
> > But orders are orders.
> >
> > Warning: brain damage detected. You will instantly be listed in ORBS, and
> > will likely also be frequently abused by relay-rapers.
>
> Jeff, if you read into the statement just a bit, you'll realize that
> the boss is asking for something much worse: denying relaying from
> valid IPs which don't present the ISPs domain in the envelope sender.
Why not use something like smtp-poplock? If they successfully auth to
the pop daemon they can send mail for X minutes. Then who cares what
they have in the From header.
Vince.
--
==========================================================================
Vince Vielhaber -- KA8CSH email: [EMAIL PROTECTED] http://www.pop4.net
128K ISDN from $22.00/mo - 56K Dialup from $16.00/mo at Pop4 Networking
Online Campground Directory http://www.camping-usa.com
Online Giftshop Superstore http://www.cloudninegifts.com
==========================================================================
