On 12/17/2010 8:51 AM, Jason Bertoch wrote:
On 2010/12/17 11:47 AM, Ted Mittelstaedt wrote:
And what prevents a spammer from forging this into a header and
bypassing SA? Just askin.
Without checking, I'd guess that matching an authentication header with
an address in trusted_networks would be sufficient.
why are you using authenticated SMTP from trusted networks?
The whole point of auth smtp is to come from UN-trusted networks.
If your
authentication server is relaying for spammers, you've got an entirely
different problem.
No, not really. You as an administrator cannot control what your users
do and if your users save their authenticated SMTP passwords into their
e-mail clients then later allow their machines to be cracked, then the
crackers get the auth password and away they go.
Ted
