|
Home > Archive > IIS and SMTP > July 2004 > Relay attempts
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
| Kevin Buchanan 2004-07-10, 5:53 pm |
| I am running W2K3/SMTP/POP3 for my home office and I am getting more and
more attempts to relay from my server. Most of them are coming from:
china9988@21cn.com address. The messages aren't being deliverered, so they
being bounced back to me. How (or is there a way) to prevent it?
The message is sent to and from: china9988@21cn.com with this in the
body: t_Smtp.LocalIP. Of course, it is bouncing back as NDR.
I have followed all the suggested "anti-relaying" techniques. Am I just
"stuck" with some lame-a$$ trying to relay?
-Kevin
| |
| Martin Bodenstedt 2004-07-12, 2:49 am |
| Kevin Buchanan wrote:
> I am running W2K3/SMTP/POP3 for my home office and I am getting more and
> more attempts to relay from my server. Most of them are coming from:
> china9988@21cn.com address. The messages aren't being deliverered, so they
> being bounced back to me. How (or is there a way) to prevent it?
Aren't You confusing two things?
Relaying means someone's trying to abuse your machine to send mails
elsewhere Disable that!
a sure way to test it is to telnet to your machine on port 25 (smtp
port) and doing smoething like:
"helo foobar.com"
mail from:<fake@nonexisting.company.com>
rcpt to:<fake@another.nonexisting.company.com>
data .
if you get to the data command, then your mailserver is open for
relaying and you're really into trouble.
What You#re most likely seeing though is that someone is spamming the
internet with your address as the envelop sender.
there is not much you can do about that...
--
Martin Bodenstedt
Landtag von Baden-Württemberg (www.landtag-bw.de)
|
|
|
|
|