[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] stunnel [RaQ4]

Subject: Re: [cobalt-security] stunnel [RaQ4]
From: Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Tue, 26 Mar 2002 16:23:53 -0500
Organization: Front Street Networks LLC
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Monday 25 March 2002 11:54 pm, Gerald Waugh wrote:
>
> yes, I can smtp using my trusted ips but no one else can.
> Since spop3 through stunnel logs in to qpopper as 127.0.0.1.
> I think adding 127.0.0.1 to /etc/mail/access.db should work.
> Sounds dangerous, but the firewall blocks any spoofing of 127.0.0.1 from
> the outside.
>
Well, another idea that did not last very long. Sure 127.0.0.1 gets put into
access.db, but when a client uses smtp, the IP is their correct ip, not 
127.0.0.1
So this won't work unless smtp uses ssl.

Strangely wuite out there! Anyone using SSL to pop mail?

-- 
Gerald Waugh
http://www.frontstreetnetworks.com
New Haven, CT, United States of America
4:20pm up 5 days, 45 min, 2 users, load average: 1.35, 1.37, 1.48

References:
- [cobalt-security] stunnel [RaQ4]
  - From: Gerald Waugh
- Re: [cobalt-security] stunnel [RaQ4]
  - From: Francisco Sánchez
- Re: [cobalt-security] stunnel [RaQ4]
  - From: Gerald Waugh

Prev by Date: Re: [cobalt-security] imap update
Next by Date: Re: [cobalt-security] RaQ3/4 + glibc Update (+ ChiliSoft) + MySQL = Problem
Previous by thread: Re: [cobalt-security] stunnel [RaQ4]
Next by thread: [cobalt-security] quick opensshd question

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index