From owner-freebsd-questions  Tue Jun  6 13:14:45 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from psasolar.colltech.com (psasolar.colltech.com [208.229.236.14])
	by hub.freebsd.org (Postfix) with ESMTP id 5BF5137B81B
	for <questions@FreeBSD.ORG>; Tue,  6 Jun 2000 13:14:41 -0700 (PDT)
	(envelope-from jmutter@colltech.com)
Received: from localhost by psasolar.colltech.com (8.9.3/8.9.3/not) with ESMTP id PAA11216;
	Tue, 6 Jun 2000 15:14:20 -0500 (CDT)
Date: Tue, 6 Jun 2000 15:14:19 -0500 (CDT)
From: "James A. Mutter" <jmutter@colltech.com>
X-Sender: jmutter@psasolar.private.psa.pencom.com
To: Gabriel Ambuehl <gabriel_ambuehl@buz.ch>
Cc: keith@mail.telestream.com, questions@FreeBSD.ORG
Subject: Re: Spoofed mail
In-Reply-To: <90470422972.20000606215646@buz.ch>
Message-ID: <Pine.GSO.4.21.0006061513200.10776-100000@psasolar.private.psa.pencom.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


  > Tuesday, June 06, 2000, 9:50:49 PM, you wrote:
  > > Is there a method to prevent mail spoofs? What is to stop spamers from
  > > just scripting a telnet to port 25 and doing their deeds there?
  > 
  > Configuring your SMTP to only allow users with the right to send
  > mail... The way to accomplish that depends on the mailserver you use.
  > Don't ask me anything about sendmail, qmail is ok though ;-)


POP Before SMTP is a good way to do this.  Force the users to comlete a
valid POP transaction before accepting mail from that host.  Sendmail,
Postfix, and I'm guessing QMail all support this, with varying degrees
of difficulty.

--
Jim



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message