[Mimedefang] OS wars... [was Viruses: Bounce or Discard?]
John Rowan Littell
littejo at earlham.edu
Tue Sep 30 10:55:01 EDT 2003
-----BEGIN PGP SIGNED MESSAGE-----
Lo, Kevin A. McGrail and the coffee pot sang in unison:
> Add the following to your sendmail.mc assuming you have some sort of
> anti-relay features:
>
> DAEMON_OPTIONS(`Port=smtp, Name=MTA')dnl
> DAEMON_OPTIONS(`Port=2025, Name=MTA')dnl
Better yet, use port 587 -- the generally recognized submission port
- -- and protect it with the requirements that you must authenticate
before submitting anything and (preferably) you must use TLS. You can
get away with running an extremely tight ship on an alternate port
like 587, because you're not expecting random MTAs to contact you and
attempt to deliver mail there, you're only expecting registered users
to do so.
The only trick here is figuring out for each different MUA whether it
supports a different SMTP server port number and how to change the
default if it does (bloody stupid Eudora grumble smack).
--rowan
- --
John "Rowan" Littell
Systems Administrator
Earlham College Computing Services
http://www.earlham.edu/~littejo/
2003-09-30 09:48
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (Darwin)
Comment: Made with pgp4pine 1.76
iQCVAwUBP3mZBJdUNSJ2nf/5AQFwOgP9HqORow09si273JsRwhz3uIJ8pRnHECz4
ZIuIrCfNTxqp0A/FT3oDZ+EVDmsCbIpAnLRBi32MEkVeuPuXPXw9ruxNrvBEIDqN
7DMoJgJclZOyCBYb0PPJXtq72Qb2GvjbVSmGHeGkpU2wI06SNg7kmoZ4f7kcg2DE
fuGQ+GbxI2I=
=h670
-----END PGP SIGNATURE-----
More information about the MIMEDefang
mailing list