Re: Cant email from Tmobile hotspots - putting me out of business
me at privacy.net
Mon Feb 23 12:05:59 EST 2004
| >> What about those free WiFi hot spot systems? I ask because I've been
| >> volunteered to project manage a town wide (~6 blocks X 4 blocks) WiFi
| >> in WNC that will provide free access to visitors. (Area is heavy
| >> trade).
| > Do not allow e-mail from users/systems that you do not have positive
| > identification of on port 25.
| > You will need to block several of the exploited ports, such as LANMAN
| > ports and most of the server ports for incoming traffic. Otherwise you
| > may find your "free" network hosting many spammer sites.
| You might want to add to a bunch of well-known proxy ports to the outbound
| blocking. Blocking port 25 should stop direct connections to remote mail
| servers, but people can just connect to a proxy and then to a remote mail
| server from there.
| If it's a free system, you can pretty much do what you like - might be
| best to close off everything in both directions, enable ports for web
| access, ssh and various other ssl things and then add things as necessary
| after that.
Thanks a bunch,
I'd appreciate all comments and recommendation on this project that anyone
cares to share. Post to the group or direct to me via brother_rabbit @
More information about the SpamCop-List