[fetchmail-devel] Re: mail delivery via smtp broken

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Quoting from Matthias Andree's mail on Thu, Nov 10, 2005 at 02:31:57AM +0100:
> >> This patch should fix this broken behaviour.
> >
> > Thanks, applied for upcoming -rc8.
> 
> Actually we need to set fetchmailhost when Kerberos is used, to match
> documentation somewhat, so I'll use this:

The setting of fetchmailhost is correct.

> +		save_str(&ctl->smtphunt, use_kerberos ? fetchmailhost : "localhost", FALSE);

I believe this is still incorrect. Your patch would imply that if
using Kerberos authentication, the local SMTP server should listen on
the external interface, exposing the system to SMTP attacks. A secure
desktop machine will have the local SMTP server listening on the
loopback interface (i.e. on localhost) only.

ODMR / ETRN / Kerberos authentication are all mailserver side options.
They do not imply that the local SMTP server should listen on the
desktop machine's external interface.

-- 
Sunil Shetye.

[fetchmail-devel] Re: mail delivery via smtp broken

Client daemon to move mail from POP and IMAP to your local computer

[fetchmail-devel] Re: mail delivery via smtp broken