projects / matthijs / servers / drsnuggles.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dc55cf5) | patch
exim: Don't do sender verification by callout.
authorMatthijs Kooijman <matthijs@stdin.nl>
Mon, 4 May 2009 12:58:56 +0000 (14:58 +0200)
committerMatthijs Kooijman <matthijs@stdin.nl>
Mon, 4 May 2009 12:58:56 +0000 (14:58 +0200)
commit65cf2f49508f04297239866bc8a4e8590db15d27
tree619ff8b7cbdfcd56a00ae031620bea4fa22565d0tree | snapshot
parentdc55cf548d3fc600272d0de1e7ab93185f8eab1dcommit | diff
exim: Don't do sender verification by callout.

Doing callouts puts extra resource pressure on the called server. Since
the sender address will be forged in a lot of cases anyway, this won't
really help us and can be used in a DDOS attack on some server. See
http://www.backscatterer.org/index.php?target=sendercallouts
etc/exim4/conf.d/acl/30_exim4-config_check_rcpt diff | blob | history
Configuration files for drsnuggles.stderr.nl