<<< Date Index >>>     <<< Thread Index >>>

Re: smtp_pass: why is it unneeded?



Am 2008-06-24 10:31:12, schrieb Kyle Wheeler:
> Unlikely. More likely, your server has implemented IMAP-before-SMTP, 
> which means anyone from your IP address can send email via SMTP 
> without a username or password. It's not that it's figuring out what 
> your username and password are, it's that successful logins to your 
> IMAP server probably put your IP address on a whitelist that your SMTP 
> server uses. 

Does this work only with Linux Clients or under Windows too?


Hmmm, there are inteligent Viriis and Trojans which use the  SMTP  relay
of ones provider...  and if he/she  connect  successfuly  to  IMAP,  the
Viriis or Trojans can spam the world "legaly"...

Not very usefull in my eyes.

> for each is absolutely necessary, I just implemented IMAP-before-SMTP. 
> The devil is in the details, and there are some drawbacks to this kind 
> of policy (which I can get into, but is probably offtopic of this 
> list), but it's a common-enough setup that I wouldn't be surprised if 
> your server does it.

The thing above?

Thanks, Greetings and nice Day/Evening
    Michelle Konzack
    Systemadministrator
    24V Electronic Engineer
    Tamay Dogan Network
    Debian GNU/Linux Consultant


-- 
Linux-User #280138 with the Linux Counter, http://counter.li.org/
##################### Debian GNU/Linux Consultant #####################
Michelle Konzack   Apt. 917                  ICQ #328449886
+49/177/9351947    50, rue de Soultz         MSN LinuxMichi
+33/6/61925193     67100 Strasbourg/France   IRC #Debian (irc.icq.com)

Attachment: signature.pgp
Description: Digital signature