On Tue, 11 Jan 2000, Forrest W. Christian wrote:
I'm not saying I have the right answer, just that whatever the answer is should support at least a majority of the current base.
I think must of us agree that the the truly right answer (at least for SMTP Relay) is to implement SMTP auth on a global scale.
That's a nice idea...but we can't even get all the open relay's closed. How many years do you think it'll take to fundamentally change how the SMTP protocol works across the entire internet? I'm more in favor of the idea of using an SMTP server local to the network you're dialing into and blocking or transparently redirecting SMTP traffic to remote networks. I realize this makes it difficult or impossible to impose your restrictions on what your customers can do with SMTP if they dial into outsourced ports, but IMO this would stop the abuse of open relays much sooner than SMTP auth can. ---------------------------------------------------------------------- Jon Lewis *jlewis@lewis.org*| Spammers will be winnuked or System Administrator | nestea'd...whatever it takes Atlantic Net | to get the job done. _________http://www.lewis.org/~jlewis/pgp for PGP public key__________