Penetration Testing
Mail Relay / Open Mail Replay Oct 02 2011 06:25PM
informationhacker08 (informationhacker08 gmail com) (4 replies)
Re: Mail Relay / Open Mail Replay Oct 02 2011 07:44PM
Andy Meyers (andy meyers hushmail com)
Re: Mail Relay / Open Mail Replay Oct 02 2011 07:39PM
Michal Zalewski (lcamtuf coredump cx)
> Suppose there is Mail server having port 25 open xyz.com
> an attacker login on Mail server  through telnet and then try to send the
> mail but the he can only send a mail within the xyz company not outside
> ..so this will be consider as Vulnerability or not

Yes. Thankfully, this can be resolved by removing the legacy
/usr/bin/telnet program from the originating system.

/mzi

------------------------------------------------------------------------

This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

[ reply ]
Re: Mail Relay / Open Mail Replay Oct 02 2011 07:33PM
Voulnet (voulnet gmail com)
Re: Mail Relay / Open Mail Replay Oct 02 2011 07:33PM
haZard0us (hazard0us pt gmail com)


 

Privacy Statement
Copyright 2010, SecurityFocus