Well, since I'm the only user on my system, I block everything from the outside and only allow intranet sending. When I'm at work and want to send mail using my home account, I open a SSH session forwarding ports 110 and 25. Port 110 is totally blocked to the internet.
Barry ----- Original Message ----- From: "FreeportWeb Debian Support Account" <[EMAIL PROTECTED]> To: "Paul Johnson" <[EMAIL PROTECTED]>; <debian-user@lists.debian.org> Sent: Friday, June 28, 2002 7:53 AM Subject: RE: Mail Server > Actually, your both not totally correct. If you follow the "Life with > qmail" > document, its called "vpopmail smtp authentication". > > Its fairly "hands-off", and requires no intervention or > adding of IP addresses to the system (manually), its all > automated, it works as such: > > If you have a POP3 mail account on the machine, when you connect to the > smtpd daemon, qmail add's your IP address to the tcp.smtp cache ONLY if you > are > authenticated (by your username and password). That way, you are assumed to > be "OK" by the system to send SMTP traffic through -- hence nobody can > actually > send e-mail through the server unless they have a username and password for > qmail -- which is simply a passwd file that is managed by the vpop admin > tools. > > What's really nice about this is if you have a lot of roaming users (laptops > etc.). > As the admin, you never have to add the IP to the tcp.smtp file... its all > done > for you. > > Gary > > -----Original Message----- > From: Paul Johnson [mailto:[EMAIL PROTECTED] > Sent: Friday, June 28, 2002 7:19 AM > To: debian-user@lists.debian.org > Subject: Re: Mail Server > > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On Fri, Jun 28, 2002 at 07:04:33AM -0400, Barry Michels wrote: > > I've been using qmail for about 3 months now and haven't had to think > about > > it at all. Set it and forget it. It takes a while (an hour or so) to get > > it all setup, but it's worth it for a very stable mail system. By > default, > > everyone is blocked from relaying. Just open a hole for yourself, and > > you're set. > > "Open a hole?" Wrong answer. "Impliment authentication?" Right > answer. > > - -- > Baloo > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.0.7 (GNU/Linux) > > iD8DBQE9HEYiNtWkM9Ny9xURAso4AKCwdtFyug9TyHrZuQ5dP+E8+kPN0wCgottK > RcyAXurQ7VPO98+eE9IdshU= > =RTW+ > -----END PGP SIGNATURE----- > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > > > --- > Incoming mail is certified Virus Free. > Checked by AVG anti-virus system (http://www.grisoft.com). > Version: 6.0.372 / Virus Database: 207 - Release Date: 6/20/2002 > > --- > Outgoing mail is certified Virus Free. > Checked by AVG anti-virus system (http://www.grisoft.com). > Version: 6.0.372 / Virus Database: 207 - Release Date: 6/20/2002 > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
