Re: NTMail3 has open relay hole

From: Peter van Dijk (peterat_private)
Date: Tue Jun 08 1999 - 11:52:40 PDT

Next message: Bencsath Boldizsar: "unneeded information in sudo"

Previous message: Jefferson Ogata: "Re: Windows NT 4.0, 95, 98 (?) networked PRN flaw"
Maybe in reply to: Geo.: "NTMail3 has open relay hole"
Next in thread: James Stephens: "Re: NTMail3 has open relay hole"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jun 08, 1999 at 12:07:17PM -0400, Geo. wrote:
> NTMail version 3 has an open relay exploit that allows anyone to send mail
> thru the server even if it's not local.
>
> See http://www.nthelp.com/40/ntmailspam.htm for the details.

Note that the <> mentioned here is the empty envelope sender which is
required for bounces. Allowing it thru is still kinda stupid tho. A spammer
exploiting this doesn't have to care about where his bounces go either :)

Greetz, Peter
--
| 'He broke my heart,    |                              Peter van Dijk |
     I broke his neck'   |                     peterat_private |
   nognikz - As the sun  |        Hardbeat@ircnet - #cistron/#linux.nl |
                         | Hardbeat@undernet - #groningen/#kinkfm/#vdh |

Next message: Bencsath Boldizsar: "unneeded information in sudo"
Previous message: Jefferson Ogata: "Re: Windows NT 4.0, 95, 98 (?) networked PRN flaw"
Maybe in reply to: Geo.: "NTMail3 has open relay hole"
Next in thread: James Stephens: "Re: NTMail3 has open relay hole"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:48:30 PDT