We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
COURSE of the MONTH
9 days, 15 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Refuse any command when telnet to port 25
Posted on 2002-06-13
how can I protect my mail server such as MS exchange from anyone who telnet to port 25 and then use any command such as VRFY to verify users on my mail server ??
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
4 Comments
The server software may have (should indeed have) an option to discard/deny VRFY commands. Look for this.
Regards
/RID
Regards
/RID
There is some information found on this link.
Scroll to the middle of the page.
http://216.239.33.100/search?q=cache:gSTBYPODqkgC:www.ima.com/pdf/ienews/vol4no6.pdf+disable+vrfy+ms+exchange&hl=en&ie=UTF8
I hope this helps.
Scroll to the middle of the page.
http://216.239.33.100/search?q=cache:gSTBYPODqkgC:www.ima.com/pdf/ienews/vol4no6.pdf+disable+vrfy+ms+exchange&hl=en&ie=UTF8
I hope this helps.
Thanks , rid,but I see most of mail servers are already tuned for not permitting to use VRFY, Is it right ?
I think most defaults to reject VRFY commands, yes.
Rejecting ALL commands if they come from a telnet session may be another matter. Since SMTP commands are a bit on the simplistic side, doing them by telnet isn't too complicated. You'd have to reject telnet sessions only, and not SMTP session. Perhaps some firewall setting could do this, but what is to gain from that?
Regards
/RID
Rejecting ALL commands if they come from a telnet session may be another matter. Since SMTP commands are a bit on the simplistic side, doing them by telnet isn't too complicated. You'd have to reject telnet sessions only, and not SMTP session. Perhaps some firewall setting could do this, but what is to gain from that?
Regards
/RID
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
In this article we will discuss some EI Capitan Mail app issues and provide some manual process to resolve them.
Read this checklist to learn more about the 15 things you should never include in an email signature.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory.
NOTE: For Outlook 2016 and 2013 perform the exact same steps.
Open a new email: Click the New email button in Outlook.
Start typing the address: …
Many of my clients call in with monstrous Gmail overloading issues with Outlook. A quick tip is to turn off the All Mail and Important folders from synching. Here is a quick video I made to show you how to turn off these and other folders in Gmail s…
Suggested Courses
Course of the Month9 days, 15 hours left to enroll
762 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.