Dnia 6.03.2025 o godz. 15:27:54 mailop--- via mailop pisze: > 5. if sasl fails it logs it and increases response delay time AND > pretends Authentication succeeded > if sasl suceeds it sets response delay to 0 > 6. If auth failed it drops message, but says it was delivered > If auth success it delivers the message to postfix for processing.
So, if someone connects with a real email client, in order to send a legitimate message, but mis-types the password, the server pretends to pass authentication and send out the message, but actually the message is dropped and never sent out? Well... that seems a bit dangerous. And can make users *really* angry. -- Regards, Jaroslaw Rafa r...@rafa.eu.org -- "In a million years, when kids go to school, they're gonna know: once there was a Hushpuppy, and she lived with her daddy in the Bathtub." _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
