Topic: mail relay control

[Louis Dachis]

I am looking for better control over mail relay... I have users outside my network who need the ability to send mail, but opening this capability has cause some mischievious folks to send spam on my behalf.  Please help.

[Bob King]

VPN is the best way.

[Andrei]

Have them use webmail over SSL.

[Bob King]

If VPN is not handy you can try POP before SMTP. Go to Natham Fowler's site for complete information, the URL is http://www.stickit.nu/pop-before-smtp.

[Nathan Fowler]

http://www.stickit.nu/pop-before-smtp

[Nathan Fowler]

Haha, I didn't see you're post Bob, thanks

Sorry for reposting the link.

[Louis Dachis]

thanks for all the advice.  VPN isn't a great solution because I don't want outside users to have access to network resources, just email.  I don't know of a way to manage VPN rights.  I will check into the pop before SMTP.  Thanks again.

[Aaron]

What about using SSH using a tool like VanDyke's Entunnel to make the connection into your network and have the IMAP & SMTP ports forwarded to your e-smith server? It is essentially a SSH client without the command line access.

The remote client then has their mail account set up to use "localhost" as the incoming & outgoing mail server for this account (+ their username & oassword obviously).

When a connection is required the user establishes the tunnel (or it can be set up to always be on at startup) and, voila, its as if they were on the inside with their mailing yet no VPN exposure.