![[SpamCop.net - protecting the internet through technology]](http://news.spamcop.net/newlogo.jpg)
[SpamCop-List] Re: spamcop posting
Mike Easter
MikeE at ster.invalid
Tue Aug 24 15:39:43 EDT 2004
Mike Easter wrote:
> More likely you just haven't determined your insecurity. There's an
> Exchange server there; they are notorious for smtpauth exploits.
220 mail.viecore.com Microsoft ESMTP MAIL Service, Version: 5.0.2195.6713
ready
http://www.mail-abuse.com/support/an_sec3rdparty.html#Microsoft%20Exchange%20Server
<snip>
Versions through 5.0 are vulnerable to relay if they permit any local
SMTP users. (Servers that only act as a gateway between internal non-SMTP
mail and the Internet don't have relay problems.) In other words, if your
Exchange 5.0 server is connected to the Internet, it WILL relay for
anyone, and that cannot be stopped.
Starting with version 5.5, provisions have been made to prevent
unauthorized relay. These are described in detail in an article from
Windows NT Magazine,
http://www.winnetmag.com/MicrosoftExchangeOutlook/Article/ArticleID/7696/MicrosoftExchangeOutlook_7696.html.
If you're running an older version, it's time to upgrade.
</snip>
--
Mike Easter
kibitzer, not SC admin
More information about the SpamCop-List
mailing list