Re: SMTP Security

Valid point - What I really want disabled is the Version of SMTP

-----Original Message-----
From: Dar Scott [mailto:dsc@xxxxxxxx] 
Sent: 09 January 2002 15:38
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: SMTP Security

http://www.ISAserver.org


At 12:20 PM +0000 1/9/02, John Burridge wrote:
>I have heard that it is a security no-no to have your SMTP server reply
with
>the following when connecting to it through telnet.
>
>"220 <hostname>.<domain>.com Microsoft ESMTP MAIL Service,
>  Version: 5.0.2195.1600 ready at Thu, 30 Nov 2000 18:09:43 -0600"
>
>Does anyone know how to disable this response?

I read recently that the RFC requires this and some SMTP servers 
won't talk to you without it.  You might have to provide fake data 
instead of disabling 220.

Dar Scott




------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jburridge@xxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')


Other related posts: