From owner-freebsd-questions  Thu Oct 31  3:10:43 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1672B37B404
	for <freebsd-questions@FreeBSD.ORG>; Thu, 31 Oct 2002 03:10:42 -0800 (PST)
Received: from grummit.biaix.org (213-97-212-86.uc.nombres.ttd.es [213.97.212.86])
	by mx1.FreeBSD.org (Postfix) with SMTP id E9D4743E75
	for <freebsd-questions@FreeBSD.ORG>; Thu, 31 Oct 2002 03:10:39 -0800 (PST)
	(envelope-from joan@grummit.biaix.org)
Received: (qmail 1785 invoked by uid 1000); 31 Oct 2002 11:09:42 -0000
Date: Thu, 31 Oct 2002 12:09:42 +0100
From: Joan Picanyol <pica@biaix.org>
To: freebsd-questions@FreeBSD.ORG
Subject: Re: Sendmail: non-relay & secure
Message-ID: <20021031110942.GA1485@grummit.biaix.org>
Mail-Followup-To: freebsd-questions@FreeBSD.ORG
References: <B9E5EF5C.3B18%ukla@attbi.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <B9E5EF5C.3B18%ukla@attbi.com>
User-Agent: Mutt/1.4i
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

* Steve Warwick <ukla@attbi.com> [20021031 05:19]:
> Hi, 
> 
> I have sendmail / qpopper running on a production machine and have yet to
> figure out a way to open mail up to my client sin a secure way.
[snip]
> Is there a way to do this that will not open my machine up to abuse?
POP-before-SMTP. Open to abuse depends on your definition, but it is
generally safe: in order for someone to send unauthorized mail through
your smtp server, they would have to spoof the IP address from where
your client is connecting within a small time frame (tipically 10 min.)

I use qmail (http://cr.yp.to/qmail.html) and relay-ctrl
(http://untroubled.org/relay-ctrl/). If you are holding virtual domains
(and mail accounts), you might also want to try vmailmgr
(http://untroubled.org/relay-ctrl/). I use this software to serve
several virtual domains without a hitch.

qvb
-- 
pica

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message