On Tue, 7 May 2002 19:48, Jason Lim wrote: > And I also believe in it, because it is very possible that one of the > tests to determine if it is an open-relay is braindead... what if I made a > mail server that pretends it will relay email, but in fact does not, and > actually records the IP that tried to abuse the open relay and reports it > to the admins (i consider that very whitehat)? My point is that the test > is not foolproof either... unlike your "everything is black and white" > stance.
If you can send a cryptographically signed message is to a mail server outside your network and addressed to a machine in your network, if you receive it at it's destination and the crypto sign matches then you know it's an open relay. > This word is not "black or white"... if only it were. Open relay tests are very "black or white". -- If you send email to me or to a mailing list that I use which has >4 lines of legalistic junk at the end then you are specifically authorizing me to do whatever I wish with the message and all other messages from your domain, by posting the message you agree that your long legalistic sig is void. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
