Re[2]: SPAM from own customers

From: Richard Welty (no email)
Date: Tue Dec 02 2003 - 14:53:25 EST

Next message: (no name): "RR Abuse contact"
Previous message: Adam Debus: "Re: SPAM from own customers"
Maybe in reply to: Michel Renfer: "SPAM from own customers"
Next in thread: Chris Lewis: "Re: SPAM from own customers"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Tue, 2 Dec 2003 14:32:16 -0500 Brian Bruns <> wrote:
> SMTP AUTH is becoming risky if its not carefully setup and monitored. I can
> name one big time spammer who has warmed up to cracking weak passwords on
> e-mail systems that do SMTP AUTH. Means you'd have to filter your outbound
> mail servers port 25 from anyone not inside your network or a trusted
> source.

not just weak passwords, but there are also obvious default, admin,
and guest accounts on some SMTP servers which are sitting there,
easily guessed, and they are indeed being taken advantage of.

richard

-- 
Richard Welty                                         
Averill Park Networking                                         518-573-7592
    Java, PHP, PostgreSQL, Unix, Linux, IP Network Engineering, Security

Next message: (no name): "RR Abuse contact"
Previous message: Adam Debus: "Re: SPAM from own customers"
Maybe in reply to: Michel Renfer: "SPAM from own customers"
Next in thread: Chris Lewis: "Re: SPAM from own customers"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Invaluement Anti-Spam DNSBLs