Koozali.org: home of the SME Server

Security scanning messages with mail server

Lasse K. Christiansen

Security scanning messages with mail server
« on: November 14, 2002, 05:46:43 PM »
Hi all,

I just recently did a security scan of my e-smith host and it told me some things that i have no idea how to react to ?

(basically this is a nessus based scan). It told me that on my mail server it was possible to send mails directly to files and send mail that would be bounced to an application on the eserver (threatid 10259,10258,10261) ? My guess is that e-smith's mail server just ignores the messages but i'm not quite sure ??

MAIL FROM:root@host RCPT TO:/trmp/scan.out

MAIL FROM: | testing

MAIL FROM: root@host RCPT TO: | testing

Is there a risk here ??

The final one !! How do i disable recursive queries through my DNS Server on the box ? do i need to do some iptables/ipchains filtering or is there an easier way ?


Best Regards

Lasse