Re: email authentication
phn_at_icke-reklam.ipsec.nu
Date: 10/27/04
- Next message: Lassi Hippeläinen: "Re: Hijacked home page"
- Previous message: Ted & Margaret Barnett: "Hijacked home page"
- In reply to: willy gates: "email authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 27 Oct 2004 06:50:57 +0000 (UTC)
willy gates <willy_gates@hotmail.com> wrote:
> Hello
> BT have asked us to enable SMTP email authentication, good idea I
> thought...
> But then I began to think...
> I am logging into BT SMTP or POP3 server and sending them a login and
> a password. I have not got a secure connection SSL, nor is secure
> authentication supported. Therefore I assume that I am sending a
> plaintext username and password each time I log into the BT server to
> send/receive my email.
> Is this correct?
Yes.
> That means if I get a virus that wants to set up a spam zombie on my
> machine sending spam to my BT server then BT have prevented them from
> sending unauthenticated spam however it wouldn't take much to read my
> unauthenticated password and start using my BT login to send spam.
Correct. Thats why sender-id won't stop spam.
Or
> do the spam zombies created by these virus send their email using
> other servers?
They could. But it easier to use your configured MTA
> Thanks for your help
--
Peter Håkanson
IPSec Sverige ( At Gothenburg Riverside )
Sorry about my e-mail address, but i'm trying to keep spam out,
remove "icke-reklam" if you feel for mailing me. Thanx.
- Next message: Lassi Hippeläinen: "Re: Hijacked home page"
- Previous message: Ted & Margaret Barnett: "Hijacked home page"
- In reply to: willy gates: "email authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
