Re: Preventing VAX running VMS / Multinet from being used as SMTP relay

Paul Koning wrote: > > > On Dec 2, 2017, at 5:48 AM, Doug Jackson via cctech > > wrote: > > > > Camiel, > > > > Without sounding super negative (my day job as a security consultant let's > > me do that enough...) I would be especially wary of connecting anything > >

Re: Preventing VAX running VMS / Multinet from being used as SMTP relay

> On Dec 2, 2017, at 5:48 AM, Doug Jackson via cctech > wrote: > > Camiel, > > Without sounding super negative (my day job as a security consultant let's > me do that enough...) I would be especially wary of connecting anything > with a 10 year old stack to the

Re: Preventing VAX running VMS / Multinet from being used as SMTP relay

On Sun, Dec 03, 2017 at 09:32:35PM -0500, Pete Rittwage via cctech wrote: [...] > > You should never use one-to-one NAT like that. You should only forward the > ports you need from the firewall to your server. In this case, I assume > you only need tcp/23 for telnet from the outside? Just in

Re: Preventing VAX running VMS / Multinet from being used as SMTP relay

> I have a microvax set up with VMS 5, running MULTINET (and decnet > locally). The server has a FQDN and after a while being exposed to the > WWW someone out there started using the server as an SMTP relay. I can > disable and clear the queue, but I'd like to block entirely this from >

Re: Preventing VAX running VMS / Multinet from being used as SMTP relay

Camiel, Without sounding super negative (my day job as a security consultant let's me do that enough...) I would be especially wary of connecting anything with a 10 year old stack to the modern internet. The range of automatic attacks based on what the state of the OS was when it was last

Re: Preventing VAX running VMS / Multinet from being used as SMTP relay

On 11/30/17, 9:26 PM, "cctech on behalf of william degnan via cctech" wrote: > > >I have a microvax set up with VMS 5, running MULTINET (and decnet > >locally). The server has a FQDN and after a while being exposed to the > >WWW

Re: Preventing VAX running VMS / Multinet from being used as SMTP relay

On 11/30/17, 9:26 PM, "cctech on behalf of william degnan via cctech" wrote: >I have a microvax set up with VMS 5, running MULTINET (and decnet >locally). The server has a FQDN and after a while being exposed to the >WWW

Re: Preventing VAX running VMS / Multinet from being used as SMTP relay

> > > > The Multinet SMTP server is pretty basic and people who are serious about > > doing SMTP on VMS typically disable it and install a proper mailserver like > > PMDF. That's my excuse for not knowing how to disable SMTP relaying in > > Multinet. That and because it probably varies for

Re: Preventing VAX running VMS / Multinet from being used as SMTP relay

Off the cuff, I'd probably stand something else up and have it relay mail to the VAX (I suspect you've already got machines available for this purpose, ping me off-list if not). Have the VAX only accept connections from whatever's doing the relaying. If you can't get VMS or the smtpd to restrict

Re: Preventing VAX running VMS / Multinet from being used as SMTP relay

> > I have a microvax set up with VMS 5, running MULTINET (and decnet > locally). The server has a FQDN and after a while being exposed to the > WWW someone out there started using the server as an SMTP relay. I can > disable and clear the queue, but I'd like to block entirely this from >

Preventing VAX running VMS / Multinet from being used as SMTP relay

I have a microvax set up with VMS 5, running MULTINET (and decnet locally). The server has a FQDN and after a while being exposed to the WWW someone out there started using the server as an SMTP relay. I can disable and clear the queue, but I'd like to block entirely this from happening in the