Re: SMTP Relay Diffs

• Previous message: Noam Rathaus: "SMTP Relay Diffs"
• In reply to: Noam Rathaus: "SMTP Relay Diffs"
• Next in thread: Noam Rathaus: "Re: SMTP Relay Diffs"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Shouldn't this be put into a separate plugin, as it addresses a specific 
problem with a particular service and can be patched (as opposed to a 
misconfigured SMTP server which allows relays)?


On Sunday 03 March 2002 02:49 am, Noam Rathaus wrote:
> Hi,
>
> I added a check for the Microsoft AUTH relaying bypass.
> If someone spots a problem please let me know.
>
> Index: smtp_relay.nasl
> ===================================================================
> RCS file: /usr/local/cvs/nessus-plugins/scripts/smtp_relay.nasl,v
> retrieving revision 1.14
> diff -r1.14 smtp_relay.nasl
> 83,86c83,104
> <  if(i == "250 "){
> <       security_warning(port);
> <       set_kb_item(name:"SMTP/spam", value:TRUE);
> <       }
> ---
>
> >  if(i == "250 ")
> >  {
> >   security_warning(port);
> >   set_kb_item(name:"SMTP/spam", value:TRUE);
> >  }
> >  else
> >  {
> >   crp = string("AUTH NTLM <etc, etc>\r\n");
> >   send(socket:soc, data:crp);
> >   i = recv_line(socket:soc, length:4);
> >   if (i == "334 ")
> >   {
> >    crp = string("RCPT TO: test_2at_private\r\n");
> >    send(socket:soc, data:crp);
> >    i = recv_line(socket:soc, length:4);
> >    if(i == "250 ")
> >    {
> >     security_warning(port);
> >     set_kb_item(name:"SMTP/spam", value:TRUE);
> >    }
> >   }
> >  }
>
> Thanks
> Noam Rathaus
> CTO
> Beyond Security Ltd
> http://www.SecurITeam.com
> http://www.BeyondSecurity.com

• Next message: Noam Rathaus: "Re: SMTP Relay Diffs"
• Previous message: Noam Rathaus: "SMTP Relay Diffs"
• In reply to: Noam Rathaus: "SMTP Relay Diffs"
• Next in thread: Noam Rathaus: "Re: SMTP Relay Diffs"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Mar 03 2002 - 04:41:58 PST