[Trisquel-users] Compromising the Services

Michał Masłowski mtjm at mtjm.eu
Wed Jul 3 12:44:37 CEST 2013


> If you do find a solution to the SMTP-hijacking problem, please let me know.  
> Currently, I have mine set to refuse connections from outside my local  
> subnet, but that's not great for when I'm using my Android mobile on the go,  
> and want to reply to an email. Is there something we can do with  
> public/private keys here? Just a thought.

Isn't it solved by SMTP-AUTH?  Postfix can use Dovecot SASL for
authentication.  My server accepts relay only on 587 (requires STARTTLS
and authentication), I don't see many failures in the logs (unlike
zombies trying to relay on port 25).
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 835 bytes
Desc: not available
URL: <http://listas.trisquel.info/pipermail/trisquel-users/attachments/20130703/4b960395/attachment.pgp>


More information about the Trisquel-users mailing list