From owner-freebsd-questions Mon Jul 10 9:22:23 2000 Delivered-To: freebsd-questions@freebsd.org Received: from scientia.demon.co.uk (scientia.demon.co.uk [212.228.14.13]) by hub.freebsd.org (Postfix) with ESMTP id 2FF3737B5C7 for ; Mon, 10 Jul 2000 09:22:18 -0700 (PDT) (envelope-from ben@scientia.demon.co.uk) Received: from strontium.scientia.demon.co.uk ([192.168.91.36] ident=exim) by scientia.demon.co.uk with esmtp (Exim 3.15 #1) id 13Betz-000LZc-00; Mon, 10 Jul 2000 15:51:19 +0100 Received: (from ben) by strontium.scientia.demon.co.uk (Exim 3.15 #1) id 13Betz-000ByS-00; Mon, 10 Jul 2000 15:51:19 +0100 Date: Mon, 10 Jul 2000 15:51:19 +0100 From: Ben Smithurst To: "Richard E. Hawkins" Cc: freebsd-questions@FreeBSD.ORG Subject: Re: nessus says open relaying? Message-ID: <20000710155119.D74309@strontium.scientia.demon.co.uk> References: <200007071910.PAA01310@fac13.ds.psu.edu> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="wULyF7TL5taEdwHz" Content-Disposition: inline User-Agent: Mutt/1.2i In-Reply-To: <200007071910.PAA01310@fac13.ds.psu.edu> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG --wULyF7TL5taEdwHz Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Richard E. Hawkins wrote: > I just checked my system with nessus, and one of the reports is that >=20 > smtp (25/tcp) INFO The remote SMTP server allows the relaying. This mea= ns that > it allows spammers to use your mail server to send their mails to > the world, thus wasting your network bandwidth. >=20 > Is this saying that my machine (and I suppose every other stock 4.0 machi= ne) > is an open relay? Or am I misreading this? If you check your own machine, I don't know how nessus can tell. For a good mail relay check, just to "telnet mail-abuse.org". The mail-abuse.org system will run a check on the system you are connecting from and show you the results (you don't have to log in as anything special, it just starts straight away). I think that's the right way, if that doesn't work, you should be able to find a web interface to it somewhere off . --=20 Ben Smithurst / ben@scientia.demon.co.uk / PGP: 0x99392F7D --wULyF7TL5taEdwHz Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 5.0i for non-commercial use MessageID: Eg8OZXD9ag51wDDoMIqg9UBmiGoXjdbs iQCVAwUBOWni5isPVtiZOS99AQEazwQAoirNmJ3YYvR/iKbV3B9aRd7b+D9BiYgA 0fGMl/dM/WmMZ0GW2lFkcXIxS4sfGsQoFc5ft90qSrbNIH0bXPUjMSJ7/XIWzWR2 32VsazN6SD8CN1AYiLsbKmJBgWhdKeySi9iMgZ9nuTiZ16OMfjU+fi2l8lS1K91A gLkE/FbqE8M= =LOQC -----END PGP SIGNATURE----- --wULyF7TL5taEdwHz-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message