I elided the wrong section of text at the top of my response. my last message should have started:
At 04:49 PM 10/29/2003, Paul Theodoropoulos wrote:
At 04:12 PM 10/29/2003, Paul L. Allen wrote:Yep. But the problem here is not that they could be without mail for 24 hours but that for 24 hours somebody could end up sucking their mail down. Not just a breach of confidentiality but also the mail is permanently lost to them. Unlikely to happen, but not impossible.
that's an inherent weakness simply of using dynamic addresses to host an MTA, you do realize? with a reasonably well crafted timing attack, one could present themselves as the IP the mail is to go to, and grab it all.
but beyond the incorrect eliding, i'm arguing the same point mr allen is making. so it's a wash!
Paul Theodoropoulos http://www.anastrophe.com
