Re: More Authorization Questions

From: Joe (jspadea_at_massbusiness.com)
Date: 08/21/04 

Date: Sat, 21 Aug 2004 14:19:48 -0700

The next thing I would try is removing all those IP's and
adding single IP address. Reboot. Then try telneting to
port 25 from that IP address:

>From the command prompt:
Telnet x.x.x.x 25
EHLO
QUIT
  If that works, try sending a message without the
authentication. If that works, it is the way you are
entering the IP addresses. Also, I'm not sure why you
need the localhost (127.0.0.1) in there.

>-----Original Message-----
>I am using SMTP Virutal Server for IIS in Windows Server
>2003. Something else I should mention is the server is
not
>in the DMZ. All of the correct ports are forwarded though
>(25 and 110). I went to 'Properties' on the Virtual
Server
>and clicked the 'Access' tab. Then I added the IP ranges
>192.168.0.0/255.255.255.0, 10.10.0.0/255.255.255.128, and
>127.0.0.1 under the Relay Restrictions option. I've
>rebooted the server several times and it has not fixed
the
>problem :(
>
>
>>-----Original Message-----
>>On Fri, 20 Aug 2004 06:59:00 -0700, "Evan"
><grime@forbiddenninja.com>
>>wrote:
>>
>>>This doesn't make much sense to me.... Is it not
>possible
>>>to set my smtp service up so that it requires
>>>authentication, and yet still be able to receive emails
>>>from the outside world?
>>
>>No. If you want systems to authenticate, then you can't
>accept mail
>>from systems that don't authenticate.
>>
>>>If it's not possible that really
>>>makes for a hard decision. Do I want to leave my email
>>>server open for anonymous relay and have spammers use
my
>>>server freely, or do I want to enforce authentication
>and
>>>not be able to receive any email from the outside world
>>>because the other email servers don't have
authorization?
>>
>>You're confusing relaying with authenticating. They're
>not the same
>>thing.
>>
>>>I tried adding IP ranges to the Relay Restrictions
list,
>>>but that didn't do any good. It's as if the SMTP
service
>>>is ignoring that list when it decides whether or not to
>>>accept an email. What am I missing here?
>>
>>What OS and version of SMTP? I think you may be missing
>where to set
>>relay restrictions, but it may be a case of not stopping
>and
>>restarting the SMTP services.
>>
>>Jeff
>>.
>>
>.
>

Relevant Pages

  • Re: Postfix + Auth + SSL + pop3s/imaps
    ... users to authenticate can run unprivileged and request saslauthd to ... Otherwise the server must run as root in order to access ... would a mail server that uses port ... and client will exchange keys and an encrypted session is initiated. ...
    (freebsd-questions)
  • Re: servers
    ... By authenticated server, I mean one that uses a port other than 25... ... If the servers use port 587 or 465, etc., don't they have to authenticate the user? ... Your home network appears to block your access to the work account SMTP ...
    (microsoft.public.windows.vista.mail)
  • NAT Authentication Question?
    ... I have a win2k box configured with NAT as a firewall. ... except that I can't retrieve email from a server behind the FW unless I ... a "SSL Port 110 - no port available" error. ... How do you find out what port your email server is using to authenticate? ...
    (comp.security.firewalls)
  • Authentication Question?
    ... I have a win2k box configured with NAT as a firewall. ... except that I can't retrieve email from a server behind the FW unless I ... a "SSL Port 110 - no port available" error. ... How do you find out what port your email server is using to authenticate? ...
    (comp.os.ms-windows.nt.admin.security)
  • RE: Client Acces thru Router
    ... You'll need to make network traces at the client and server to determine ... You could also try telneting to the same port to verify that the traffic is ...
    (microsoft.public.sqlserver.connect)