Article not found.
Clanek nenalezen.
Place for your feedback...
Michal Ludvig
6th February 2006 at 23:46
Re: Perl & Secure SMTP
Reply
Hi Andrew,

just to clarify your situation - you're running some kind of a homegrown script on your colocated machine that listens on an internet port, right? You use this script for sending e-mails, right? And some spammers found how to abuse it for their needs, right?

Well, if the above is true I can recommend:
1) firewall - if you don't need to connect to your machine from the public internet, simply block all incoming traffic on the particular port. You could still allow it for any number of "trusted" addresses, e.g. to allow your other machines connect to the mailserver.
2) postfix (sendmail, exim, ...) - if you really use a script instead of a real mailserver I definitely recommend switching over to the real mailserver. Postfix is my favourite - easy to configure, fast, secure with a huge userbase.
3) disable relaying - accept incoming e-mail on your postfix server only for your own domains. Otherwise it's called "open relay" and is very soon blacklisted. E.g. my server accepts email for domains logix.cz and logix.net.nz, but would reject e-mail to snowsoft.co.nz, unless I use...
4) SMTP-AUTH - if the sender of the email is authenticated with username and password, my server agrees to receive mail for _any_ domain and tries to deliver it on behalf of the original sender. That way I have sent this e-mail to you at snowsoft.co.nz, I simply authenticated myself to my postfix mailserver and it did the rest for me.

My smtp-client.pl script is usable when you need to send e-mails from command line via your mailserver that requires SMTP-AUTH (and possibly TLS which provides encryption, so that the traffic can't be sniffed on the wire).
Jun 17   16:37 Patch for 2.4.x Kernels ? (by Alex)
Jun 17   16:40 Re: Patch for 2.4.x Kernels ? (by Michal Ludvig)
Feb 22   10:49 Thanks for H2G2 (by Ajay Shenoy)
Oct 19   0:35 Thanks for the mostly harmless book (by Mark Brown)
Dec 31   16:11 studium (by Elis)
Feb 6   22:32 Perl & Secure SMTP (by Andrew)
Feb 6   23:46 Re: Perl & Secure SMTP (by Michal Ludvig)
Jan 19   9:09 Re: Perl & Secure SMTP (by Tirumala)
Jan 19   9:57 Re: Re: Perl & Secure SMTP (by Michal)
Sep 14   3:23 Can't get C3 padlock to work in openssl 0.9.8 (by Cinquero)
Sep 16   0:43 Re: Can't get C3 padlock to work in openssl 0.9.8 (by anonymous)
Oct 22   10:13 padlock on FC5 on VIA Luke (by udo)
Nov 13   17:33 Re: padlock on FC5 on VIA Luke (by Régis Séguier)
Oct 22   10:54 padlock on FC5 on VIA Luke (by udo)
Oct 22   11:01 padlock on FC5 on VIA Luke (by udo)
Oct 28   16:42 Luke with no-RNG? (by udo)
Oct 28   22:26 Re: Luke with no-RNG? (by Michal)
Feb 13   14:57 logic... (by flex.)
Feb 14   1:04 Re: logic... (by Michal Ludvig)
Feb 27   17:29 Openchrome Driver (by dust)
Jul 26   14:27 Support for Kernel 2.6.16 and newer and openssl-0.9.8e (by Robert)
Jul 27   2:09 Re: Support for Kernel 2.6.16 and newer and openssl-0.9.8e (by Michal)
Nov 26   3:58 "the fuck word" (by niku)
Feb 15   9:00 Dotaz,.. (by Karl von Neklbaur)
Oct 8   6:22 Problems with openssh and via Eden (by Jakob Curdes)