On Wed, 15 Dec 2004, Christopher X. Candreva wrote: > On Tue, 14 Dec 2004, jdow wrote: > > > > Why not configure your MTA to relay mail ONLY on encrypted authenticated > > > sessions, and deliver locally (after some anti-spam checks) on plain > > > sessions, all this done at port 25? [snip..] > Actually, port 25 is NOT supposed to be used for an end-user client to > submit mail to a server. Port 587 was designated the submission port some > time ago, and should be used for all end-user to SMTP server connections. > > This is WHY port 25 is being blocked or redirected. > > Depoly SPF, use the submission port to talk to your own mail server, problem > solved.
Total agreement with this, but try to actually deploy it, client issues galore. Eudora will not let you set any port other than 25 for outgoing SMTP. Outlook will let you set an alternate SMTP port but if you do it breaks TLS. etc... -- Dave Funk University of Iowa <dbfunk (at) engineering.uiowa.edu> College of Engineering 319/335-5751 FAX: 319/384-0549 1256 Seamans Center Sys_admin/Postmaster/cell_admin Iowa City, IA 52242-1527 #include <std_disclaimer.h> Better is not better, 'standard' is better. B{