Quoting Brian Foster (blf at utvinternet.ie):
> as an FYI, there is also at least one site which will do
> a scan for being an open mail rely.
Aw, c'mon. It's dead simple to check without external assistance. All
you have to know is the definition of "mail relay" and a handful of SMTP
commands:
~ $ telnet linuxmafia.com smtp
Trying 198.144.195.186...
Connected to linuxmafia.com.
Escape character is '^]'.
220 linuxmafia.com ESMTP Exim 4.22 #1 Mon, 08 Mar 2004 08:31:20 -0800 - mm9
HELO imaspamhaven.com
250 linuxmafia.com Hello linuxmafia.com [198.144.195.186]
MAIL FROM: forgedaddress at aol.com
250 OK
RCPT TO: victim at victimdomain.com
550 authentication required
quit
221 linuxmafia.com closing connection
Connection closed by foreign host.
~ $
There ya go: My SMTP host tells attempted relayers to shove off (that 550
reject message).
[A few minutes later:]
> telnet relay-test.mail-abuse.org
OK, I have to admit, Paul Vixie's script (which runs on that autoresponder)
_does_ try quite a few truly sneaky tricks in its attempts to find a way
to relay mail through your SMTP host. (I gather that one must be
telnetting from the SMTP host's command prompt. Spammers actually used
to use the former CGI implementation of mail-abuse.org's relay test to
_find open relays_.)
I'm happy to say that my SMTP servers are all sufficiently paranoid that
none of those tricks work.
--
Cheers,
Rick Moen Ban the Bomb.
rick at linuxmafia.com Save the world for conventional warfare.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
