This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Astaro box acting as spam relay?

Hi folks at Astaro,

it seems that ASL can act as a spam relay.
While testing the box with telneting to mail-abuse.com I got the message, that test number 11 failed (email could be sent) and the box accepted 1 relay attempt (relaying mails from outside to outside).

Any ideas?

Tom

This thread was automatically locked due to age.

0 tom_01 over 24 years ago
this checking utility is a bit incomplete, it only checks if a mailer accepts certain RCPT patterns, but not if the mail really reaches the target recipients. now lets look at what he apparantly lets through (I have only posted the last 2 tests so you can see the difference:

In the last test, our mailer accepts "nobody%mail-abuse.org" as a valid recipient. It does because it misses a "@" sign in the address, so it is treating the address as a local user. Some other (broken) MTAs will treat the % like a @, making relaying work (I believe Lotus Notes is such a nutcase).

Now lets go a little further and actually send some data with the mail:

The mailer swallowed the mail nicely. But in its log, we get this:

There is no local user matching the address, so the mailer tries to send a bounce (which fails, of course) and then forgets about the event [;)]

To answer your question: No, ASL is not vulnerable to spam. However, you may ask why ASL is accepting mail for unknown local users. The reason here is that the mailer software we use (qmail) has a very modular approach to mail handling. The daemon responsible for receiving mail via SMTP does not know anything about local users, so he cannot match them at SMTP delivery time [:)]

/tom
Cancel
Vote Up 0 Vote Down

Cancel