Hello,
The scenario: this box is a linux mail relay, scanning mail and
delivering to a destination mail server, a horrible M$ EXCHANGE.
When it deals with recipient verification, the relay runs a local daemon
that connects to the destination server via either LDAP or SMTP
according to settings.
Now, the EXCHANGE is notoriously crap at recipient verification and if
you telnet the server at port 25 it will accept mail for any address @
that domain, for example:
657657657567@???
67tr37y3y7@???
invalid@???
and so on.
Now I have been told to advise the exchange's admin to enable VRFY.
I thought: what's it got to do with that?
What do you think?
I don't think that enabling VRFY will actually enable users verification
on a mail server.
--
http://www.fastmail.fm - Same, same, but different
