Mailing List SIMS@mail.stalker.com Message #12307
From: Dan Brotsky <dev@brotsky.com>
Subject: Re: Open relay detected within your network
Date: Tue, 7 Jan 2003 08:55:33 -0800
To: SIMS Discussions <SIMS@mail.stalker.com>
X-Mailer: Apple Mail (2.551)
If you put your backup server on the client list of your primary server (so that it will relay all mail from your backup server), and then you tell your backup server to send all mail to your primary server, then you have an open relay.  Is there any particular reason you have your backup server on your primary's client list?  If you were to take it off then I believe this problem would go away.

    dan

On Monday, January 6, 2003, at 09:24  AM, Paul Didzerekis wrote:

This is an automatically generated mail from ORDB.org.

Someone has submitted your mail server 63.95.200.2 to our relay checker a
<http://ORDB.org/submit/>, and we have learned that it is in fact an
open relay.

For details about the test results, please refer to
<http://ORDB.org/lookup/?host=63.95.200.2>.

Well, it happened again to our backup server.  It looks like they actually routed their test mail through our backup again which then forwarded it to the primary which then sent it out to them using the address@foriegndomain@ourdomain hack.  This needs to be fixed in SIMS ASAP so that we and others are not open relays.  I have all the anti spam stuff turned on in SIMS but it is in vain if there is still a hole that can be used to relay spam.

I have removed the line

3-rivers.com = 3-rivers.com.smtp

From the router on our backup machine and that did close the hole but I need the backup to forward messages it receives for our domains to the primary server.  After I removed that line from the router I submitted our server for testing again and it past their tests and got removed from their blacklist.

Any other suggestions?

Thanks,
-- Paul Didzerekis
Owner, Three Rivers Internet
http://www.3-rivers.com or http://www.threeriversinternet.com
Professional website hosting, authoring, & consulting.
       E-commerce using our exclusive EasyCartSystem
FREE website hosting for non-profits at http://nonprofitmac.com/
LOCAL PHONE 946-3163         ******       TOLL FREE 800-426-6646

#############################################################
This message is sent to you because you are subscribed to
 the mailing list <SIMS@mail.stalker.com>.
To unsubscribe, E-mail to: <SIMS-off@mail.stalker.com>
To switch to the DIGEST mode, E-mail to <SIMS-digest@mail.stalker.com>
To switch to the INDEX mode, E-mail to <SIMS-index@mail.stalker.com>
Send administrative queries to  <SIMS-request@mail.stalker.com>


Subscribe (FEED) Subscribe (DIGEST) Subscribe (INDEX) Unsubscribe Mail to Listmaster