[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Default Exit Policy

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Default Exit Policy
From: Juliusz Chroboczek <Juliusz.Chroboczek@xxxxxxxxxxxxxx>
Date: Mon, 26 May 2008 20:46:09 +0200
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Mon, 26 May 2008 14:46:20 -0400
In-reply-to: <20080523110725.GA12432@xxxxxxxxxxxxxxxxxxxxx> (Ansgar's message of "Fri\, 23 May 2008 13\:07\:25 +0200")
References: <200805222359.35131.njdube@xxxxxxxxx> <20080523110725.GA12432@xxxxxxxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Gnus/5.11 (Gnus v5.11) Emacs/22.2 (gnu/linux)

> Just as with SMTP, security [with SMTP-submit] is optional. See
> RFC 4409 for details on the protocol.

4.3.  Require Authentication

   The MSA MUST by default issue an error response to the MAIL command
   if the session has not been authenticated using [SMTP-AUTH], unless
   it has already independently established authentication or
   authorization (such as being within a protected subnetwork).

In other words, SMTP-submit MUST use authentication, but the
authentication may be something as weak as deciding depending on the
IP address.

Folks, unless you are running on a network that allows unauthenticated
SMTP-auth, please allow port 587 in your exit policy.

                                        Juliusz

Follow-Ups:
- Re: Default Exit Policy
  - From: Nathaniel Dube

References:
- Default Exit Policy
  - From: Nathaniel Dube
- Re: Default Exit Policy
  - From: Ansgar -59cobalt- Wiechers

Prev by Author: Re: set up relay
Next by Author: Re: Tor On Private Network
Previous by thread: Re: Default Exit Policy
Next by thread: Re: Default Exit Policy
Index(es):
- Author
- Thread