10 Jan 2004 05:45
Re: [sentinix-list] Sentinix & mail relay (spam)
Thanks Michael, I thought I'd just reply to the group to say "great job" again & keep up the good work. I work for a non-profit charity and look for decent, inexpensive products for the infrastructure (free or donated are always best!). The internal Sentinix box, combined with the Ethereal packet sniffer (free), already helped us hunt down PC's on our WAN that were infected with the Welchia worm. The external box will probably provide a lot of interesting info re. what is hitting us from the outside (but, luckily, never going through due to router settings). -Will >>> michel@... 01/09/04 08:25PM >>> On Saturday 10 January 2004 03:14, Will Bailey wrote: > Hi, > I enabled smtp/mail on my external Sentinix box. I assumed this must be > enabled to get alerts from some of the applications. Yes, locally at least. You can disable port 25 though. > Is it prone to being > an open mail relay? No. > > I ran a GFILANguard scan on the server and the app seems to think so: "SMTP > server allows relaying" Don't trust that, if you want to be real sure, try to actually relay e-mail through it... or do some SMTP hacking. This is what I get with (basically) the default sentinix config (it's somewhat modified, but not much): user@...(~) nc sentinixbox 25 220 sentinixbox ESMTP Postfix HELO test.com 250 sentinixbox.com MAIL FROM: test@... 250 Ok RCPT TO: fubar@... 554 <fubar@...>: Recipient address rejected: Relay access denied QUIT 221 Bye Michel _______________________________________________ SENTINIX mailing list SENTINIX@... http://elevenprospect.com/mailman/listinfo/sentinix
RSS Feed