From owner-freebsd-questions Mon Jul 29 21:45:52 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BC49937B400 for ; Mon, 29 Jul 2002 21:45:49 -0700 (PDT) Received: from notus.primus.ca (mail.tor.primus.ca [216.254.136.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 258AB43E42 for ; Mon, 29 Jul 2002 21:45:49 -0700 (PDT) (envelope-from leth@primus.ca) Received: from dialin-129-188.hamilton.primus.ca ([209.90.129.188]) by notus.primus.ca with esmtp (Exim 3.33 #16) id 17ZOtH-0007tD-0A; Tue, 30 Jul 2002 00:45:48 -0400 Date: Tue, 30 Jul 2002 00:45:47 -0400 (EDT) From: Jason Hunt X-X-Sender: leth@lethargic.dyndns.org To: freebsd-questions@FreeBSD.ORG Cc: Mike Subject: Re: Allowing controlled relay with sendmail. In-Reply-To: <3230.192.168.1.10.1027986071.squirrel@email.unixhideout.com> Message-ID: <20020730003608.V8148-100000@lethargic.dyndns.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > >Keep in mind that by opening up your mail server to let users from other > >ISPs relay through you, you are becoming an open relay yourself. > > How am i an open relay if i am requiring auth before sending? If you're requiring SMTP AUTH, then no, you're not an open relay. I meant that if you were to just add IP ranges for all of your users which are on numerous ISPs, then effectively you are becoming an open relay for the said ISPs. As a side note, sendmail also allows you to define domains to relay. This is determined by doing a reverse lookup on the IP of the client. However, I'm not sure how the rules go for resolving forwards, or if the forwards and reverses are different domains, etc etc. Either way, if you had people on isp1.com and isp2.com that you want to relay for, you can just add "isp1.com RELAY" and "isp2.com RELAY" to the access list. Even when doing this, you should also add the range of IPs, in-case DNS stops working. > This is just sad. The internet used to be such a nice place. Then the > pinheads arrived. Im so limited to what i can do with my site/servers > because of people with no respect for other people's property. What ever > happened to if it's not yours dont touch it? =] *sigh* Marketting? Business? All that cal. Yeah, too bad it wasn't 1995 again. If it was, I'd still be on the BBSes. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message