Testing for Open Relays?

From: Pete Turnbull <pete_at_dunnington.u-net.com>
Date: Sat May 18 20:46:19 2002

On May 18, 10:19, Zane H. Healy wrote:

> I'm assuming the following means it's safe for me to have this system
> connected to the net. I'm now in the process of also testing with
> www.ordb.com, and have already tried the telnet trick posted earlier.

> Relay test 3
>
> >>> RSET
> <<<
>
> Relay test result
>
> Could not reset connection, test failed.

Um, no, I'm afraid it means your SMTP software bombed. It failed to go to
the reset (initial) state after the second test, so the test sequence was
aborted, and the remaining 16 or so (?) tests weren't carried out. I
wouldn't trust that software just yet...

I think the next test would have been something involving a message
ostensibly from the "<>" address (which represents the mailer daemon), and
then some tests involving forged addresses intended to look like your own
domain, and then assorted routed or malformed addresses. Some of these are
very important, and your site hasn't been tested for most of them.

-- 
Pete						Peter Turnbull
						Network Manager
						University of York
Received on Sat May 18 2002 - 20:46:19 BST

This archive was generated by hypermail 2.3.0 : Fri Oct 10 2014 - 23:35:17 BST