[milters] Archive

Lists Index Date Thread Search

Article: 623
From: Anthony Howe
Date: 2005-06-27 12:52:45 -0400
Subject: Re: whitelisting localhost

Removal...........: milters-request@milter.info?subject=remove
More information..: http://www.milter.info/#Support
--------------------------------------------------------

Anthony Howe wrote:
> Martin Lathoud wrote:
> 
>>Hello,
>>
>>It seems that whitelisting localhost is not a good idea:
>>Jun 27 11:16:12 mx1 sm-mta[17954]: j5RFGAtZ017954: 
>>from=<facturation@bluepaid.com>, size=946, class=0, nrcpts=1, 
>>msgid=<200506271516.j5RFGAtZ017954@mx1.b2b2c.ca>, proto=SMTP, 
>>daemon=MTA, relay=localhost [203.210.215.68] (may be forged)
>>Jun 27 11:16:10 mx1 milter-spamc[17962]: 14245 NOQUEUE: connection 
>>localhost [203.210.215.68] white listed, skipping
>>
>>Indeed, 203.210.215.68 PTR is localhost. What do you think of this case?
> 
> 
> Thats evil!

I should have gone on to say that you shouldn't white list:

	localhost
	localhost.localdomain

But you should whitelist:

	127.0.0.1
	IPv6:::1

-- 
Anthony C Howe                                 +33 6 11 89 73 78
http://www.snert.com/       ICQ:
7116561         AIM: Sir Wumpus

Sendmail Anti-Spam Solutions           http://www.snertsoft.com/
                                             We Serve Your Server

Lists Index Date Thread Search