mouss wrote:
Le 13/03/2011 17:57, Alfonso Alejandro Reyes Jimenez a écrit :
Hi everyone.
I'm sending this email because I'm looking for a reference regarding smtp
attacks, this is because I'm working to create some smtp signatures for the
snort solution.
It's not directly with snort, I'm willing to contribute with the bleeding snort
proyect.
I can't find any information regarding the smtp attacks only the relay test and
that kind of stuff.
The question is:
Is there any book related with smtp attacks, exploits or any other type of
attack related with the smtp protocol?
I will highly appreciated any recomendation, this signatures will help us
everyone.
This is the wrong place. if we find attacks on postfix, we would report
them and they will be fixed.
anyway, that signature approach is say what...? it's helpful to find
software that's not maintained. but do we need signatures for that?
It is useful. There are many vendors that are not patching the STARTTLS
bug right away and many still showing unknown.
