In times of technical hardship where else would I turn but the OcUK forums!!
After carrying out a bit of an audit on our mail servers I have found what appears to be a nasty looking security vulnerability!
Before I go into detail I need to make sure I understand mail server activity correctly, so, in the following example am I correct in thinking that our mail server should accept the [email protected] address for local delivery and relay the message onto another server for the [email protected] address?
If that is correct then my concern is that it is not going to take a genius to find a valid local address and use it to deliver UCE to numerous CC'd recipients...
Dan.
After carrying out a bit of an audit on our mail servers I have found what appears to be a nasty looking security vulnerability!
Before I go into detail I need to make sure I understand mail server activity correctly, so, in the following example am I correct in thinking that our mail server should accept the [email protected] address for local delivery and relay the message onto another server for the [email protected] address?
220 ourmailserver.localdomain.com ESMTP
helo localdomain.com
250 ourmailserver.localdomain.com
mail from: [email protected]
250 ok
rcpt to: [email protected]
250 ok
rcpt to: [email protected]
250 ok
If that is correct then my concern is that it is not going to take a genius to find a valid local address and use it to deliver UCE to numerous CC'd recipients...
Dan.