Refuse any command when telnet to port 25
how can I protect my mail server such as MS exchange from anyone who telnet to port 25 and then use any command such as VRFY to verify users on my mail server ??
Who is Participating?
There is some information found on this link.
Scroll to the middle of the page.
http://216.239.33.100/search?q=cache:gSTBYPODqkgC:www.ima.com/pdf/ienews/vol4no6.pdf+disable+vrfy+ms+exchange&hl=en&ie=UTF8
I hope this helps.
Scroll to the middle of the page.
http://216.239.33.100/search?q=cache:gSTBYPODqkgC:www.ima.com/pdf/ienews/vol4no6.pdf+disable+vrfy+ms+exchange&hl=en&ie=UTF8
I hope this helps.
Thanks , rid,but I see most of mail servers are already tuned for not permitting to use VRFY, Is it right ?
I think most defaults to reject VRFY commands, yes.
Rejecting ALL commands if they come from a telnet session may be another matter. Since SMTP commands are a bit on the simplistic side, doing them by telnet isn't too complicated. You'd have to reject telnet sessions only, and not SMTP session. Perhaps some firewall setting could do this, but what is to gain from that?
Regards
/RID
Rejecting ALL commands if they come from a telnet session may be another matter. Since SMTP commands are a bit on the simplistic side, doing them by telnet isn't too complicated. You'd have to reject telnet sessions only, and not SMTP session. Perhaps some firewall setting could do this, but what is to gain from that?
Regards
/RID
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
All Courses
From novice to tech pro — start learning today.
-
Course of the Month5 days, left to enrollMonitoring and Operating a Private Cloud with System Center 2012 R2 273 lessons
Regards
/RID