Hi all,
I just recently did a security scan of my e-smith host and it told me some things that i have no idea how to react to ?
(basically this is a nessus based scan). It told me that on my mail server it was possible to send mails directly to files and send mail that would be bounced to an application on the eserver (threatid 10259,10258,10261) ? My guess is that e-smith's mail server just ignores the messages but i'm not quite sure ??
MAIL FROM:root@host RCPT TO:/trmp/scan.out
MAIL FROM: | testing
MAIL FROM: root@host RCPT TO: | testing
Is there a risk here ??
The final one !! How do i disable recursive queries through my DNS Server on the box ? do i need to do some iptables/ipchains filtering or is there an easier way ?
Best Regards
Lasse
0 Replies
340 Views