[AusNOG] Did you wake up one day as a slave? unmask the reality of our financial existence.

Scott Howard scott at doc.net.au
Fri Mar 1 16:38:38 EST 2013


On Fri, Mar 1, 2013 at 5:33 AM, Tim March <march.tim at gmail.com> wrote:

> On 1/03/13 12:22 PM, Heinz N wrote:
>
> IMHO : If the ausnog SMTP MTA relays for ausnog.net, then the external
> spammer can pretend to be FROM ausnog.net, sending TO ausnog.net. The
> SMTP agent will then relay with no questions asked. No pwnage required.
>
>
> This is a Bad Thing ™ from a security perspective. Imagine the amount of
> spam you'd get if Google allowed unauthenticated localdomain relay for
> gmail.com.
>

Umm.. They do.  It's called "inbound email".

scott at zaphod:~$ telnet gmail-smtp-in.l.google.com 25
Trying 2607:f8b0:4001:c02::1a...
Connected to gmail-smtp-in.l.google.com.
Escape character is '^]'.
220 mx.google.com ESMTP pd3si9862485icb.71 - gsmtp
helo there
250 mx.google.com at your service
mail from:<march.tim at gmail.com>
250 2.1.0 OK pd3si9862485icb.71 - gsmtp
rcpt to:<march.tim at gmail.com>
250 2.1.5 OK pd3si9862485icb.71 - gsmtp

  Scott
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20130301/9cd3ec67/attachment.html>


More information about the AusNOG mailing list