On Mon, Dec 09, 2013 at 12:17:14PM +0200, Andreas Kasenides wrote:
> Thank you for the lead. I did not know that verify can be used in
> this way. I will try it.
It is not clear to me why one would allow the inbound delivery of
an e-mail message (with potentially malicious links or attachments),
but would not allow a connections to an LDAP or SQL server. The
latter seems far less risky to me.
So my advice is to allow inbound recipient queries from the DMZ,
they are much less risky than the actual email delivery.
--
Viktor.
