On Mon, 14 Jul 2003, Alejandro Ortega Paez wrote: > It will be only from old versions of vpopmail. I'm using 5.3.20 and this test > does not work:
The reason I posted is that even though it's an old issue, apparently now spammers are discovering it. If you follow the thread, it seems it's a (common?) mistake in the tcpserver setup where the user has omitted the hostname argument. In that case, relaying is wide open for anyone using smtp-auth and any user/pass. If anyone has other details (which smtp-auth patch is at issue, etc.), post away so it gets in the archives. Charles > telnet 192.168.1.2 25 > Trying 192.168.1.2... > Connected to 192.168.1.2. > Escape character is '^]'. > 220 xx.xxxx.xx ESMTP > auth login > 334 VXNlcm5hbWU6 > VXNlcm5hbWU6 > 334 UGFzc3dvcmQ6 > UGFzc3dvcmQ6 > user invalid username: > 535 authorization failed (#5.7.0) > > But it's very interesting to know this issue... > > Regards, > Alejandro Ortega. > > > >
