SMTP Authentication for internal servers, possible all hosts

Post a reply

SMTP Authentication for internal servers, possible all hosts

Postby Pugglewuggle » Fri Oct 24, 2008 5:17 am

Hi again,

I was just piddling around with an ISA server yesterday and set it to email me security/uptime reports daily...

When I got the email a few hours later I realized that I hadn't set any credentials for SMTP authentication in the ISA dialog!

I have the internal IP range in which the ISA server resides set in the Safe IP list under the SMTP >> Relaying Access tab. Is this the reason it didn't require a username/password pair? Is relaying anonymous for safe IPs? If this is the case then I assume it DOES require auth login for all other IPs not on the safe list? Or is this another problem altogether which can open the server up to spammers trying to relay?

Thanks in advance!
Pugglewuggle
 
Posts: 89
Joined: Thu Sep 20, 2007 6:38 pm
Top

Re: SMTP Authentication for internal servers, possible all hosts

Postby rob » Fri Oct 24, 2008 11:13 am

If the IP of the ISA server as within the relaying safe IP range, then this is indeed the reason why the mail got through without verification. The safe IP list basically is intended to allow certain IP's to skip all relaying checks. All other IP's would be subject to the usual relaying checks (auth login required etc).
rob
 
Posts: 415
Joined: Mon Sep 10, 2007 2:34 pm
Top

Re: SMTP Authentication for internal servers, possible all hosts

Postby Pugglewuggle » Fri Oct 24, 2008 3:21 pm

Cool, thanks!
Pugglewuggle
 
Posts: 89
Joined: Thu Sep 20, 2007 6:38 pm
Top
Post a reply

Return to General

Who is online

Users browsing this forum: Google [Bot] and 18 guests

© 2003 - Code Crafters Software Limited. Registered in England Number 06548368.
cron