Re: Discovering users by RCPT TO
From: Vince Hoang (vince_at_litrium.com)
Date: 01/14/05
- Previous message: Martin Bernhard: "question regarding w3who.dll bug"
- In reply to: Chris Buechler: "Re: Discovering users by RCPT TO"
- Next in thread: dmz: "Re: Discovering users by RCPT TO"
- Reply: dmz: "Re: Discovering users by RCPT TO"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 13 Jan 2005 13:20:15 -1000 To: pen-test@securityfocus.com
On Thu, Jan 13, 2005 at 02:20:12PM -0500, Chris Buechler wrote:
> I'd recommend disabling it unless you get flooded by such spam
> attacks. I would probably consider it unnecessary information
> disclosure, depending on the environment and reason (if any)
> for doing it that way.
Some MTAs allow permit you to drop the session after a certain
number of failures, but that only slows down the dictionary
attacks.
You cannot disable RCPT TO because that is how the SMTP protocol
designates the recipients.
-Vince
- Previous message: Martin Bernhard: "question regarding w3who.dll bug"
- In reply to: Chris Buechler: "Re: Discovering users by RCPT TO"
- Next in thread: dmz: "Re: Discovering users by RCPT TO"
- Reply: dmz: "Re: Discovering users by RCPT TO"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
