Firewall Wizards: Re: Raptor 6.0 SMTP Relay Problem

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Firewall Wizards mailing list archives

Re: Raptor 6.0 SMTP Relay Problem

From: Randolf-Heiko Skerka <rh-skerka () itsec-debis de>
Date: Fri, 14 May 1999 07:32:31 +0200

On Wed, May 12, 1999 at 09:11:09PM +0200, Holger Heimann wrote:

When checking out a freshly installed Raptor 6.0 Firewall we found, that the
SMTP Anti-Relaying mechanism did not work properly for uucp-stylish "rcpt
to:" addresses.


That´s a well known flaw on many "Anti-Spamming Systems". Many persons
forget to block adresses like "wild%hacker.ex () target mv".

We do not have access to too many Raptor 6.0 FWs and therefore would
appreciate to have this problem confirmed by others. Details on the form of
the SMTP Dialog may be received on request via PM.


I´m not sure if it´s possible on Raptor. But all firewalls I´ve installed
contain an explicit rule like "Deny all adresses containing a '%'", this
works very fine.

Mit freundlichen Grüßen

  Randolf Skerka

-- 
+------------------------------------------------------------------------+
| Randolf Skerka                              debis IT Security Services |
| Tel. +49-228-9841-510                       Rabinstrasse 8, 53111 Bonn |
| Fax. +49-228-9841-60                               http://www.dcert.de |
+------------------------------------------------------------------------+

By Date By Thread

Current thread:

Raptor 6.0 SMTP Relay Problem Holger Heimann (May 13)
- Re: Raptor 6.0 SMTP Relay Problem Randolf-Heiko Skerka (May 16)
- <Possible follow-ups>
- RE: Raptor 6.0 SMTP Relay Problem Burgess, John (EDS) (May 16)