Menu
▾
▴
Re: [fetchmail-devel] Re: mail delivery via smtp broken
|
From: Matthias A. <mat...@gm...> - 2005-11-10 11:16:48
|
Sunil Shetye <sh...@bo...> writes: > Quoting from Matthias Andree's mail on Thu, Nov 10, 2005 at 02:31:57AM +0100: >> >> This patch should fix this broken behaviour. >> > >> > Thanks, applied for upcoming -rc8. >> >> Actually we need to set fetchmailhost when Kerberos is used, to match >> documentation somewhat, so I'll use this: > > The setting of fetchmailhost is correct. > >> + save_str(&ctl->smtphunt, use_kerberos ? fetchmailhost : "localhost", FALSE); > > I believe this is still incorrect. Your patch would imply that if > using Kerberos authentication, the local SMTP server should listen on > the external interface, exposing the system to SMTP attacks. A secure > desktop machine will have the local SMTP server listening on the > loopback interface (i.e. on localhost) only. > ODMR / ETRN / Kerberos authentication are all mailserver side options. > They do not imply that the local SMTP server should listen on the > desktop machine's external interface. Right. So we'll have -rc9 without this "fetchmailhost for smtphost" behavior and another documentation update. -- Matthias Andree |
