Re: [fetchmail-devel] Re: mail delivery via smtp broken

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Sunil Shetye <sh...@bo...> writes:

> Quoting from Matthias Andree's mail on Thu, Nov 10, 2005 at 02:31:57AM +0100:
>> >> This patch should fix this broken behaviour.
>> >
>> > Thanks, applied for upcoming -rc8.
>> 
>> Actually we need to set fetchmailhost when Kerberos is used, to match
>> documentation somewhat, so I'll use this:
>
> The setting of fetchmailhost is correct.
>
>> +		save_str(&ctl->smtphunt, use_kerberos ? fetchmailhost : "localhost", FALSE);
>
> I believe this is still incorrect. Your patch would imply that if
> using Kerberos authentication, the local SMTP server should listen on
> the external interface, exposing the system to SMTP attacks. A secure
> desktop machine will have the local SMTP server listening on the
> loopback interface (i.e. on localhost) only.

> ODMR / ETRN / Kerberos authentication are all mailserver side options.
> They do not imply that the local SMTP server should listen on the
> desktop machine's external interface.

Right. So we'll have -rc9 without this "fetchmailhost for smtphost"
behavior and another documentation update.

-- 
Matthias Andree

Re: [fetchmail-devel] Re: mail delivery via smtp broken

Client daemon to move mail from POP and IMAP to your local computer

Re: [fetchmail-devel] Re: mail delivery via smtp broken