• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Testing my SMTP sever

R

reicherb

Platinum Member
Is there a good way to make sure that my SMTP server is not an open relay? I just had to open it up to allow an internal app to relay mail but want to make sure it's not wide open.

Thanks.
 
connect from an external host and try to send mail through it. SMTP is extremely simple, all you have to do is telnet to the box on port 25 and issue a few commands to see if it lets you relay or not.
 
Here are the results that I get:

C:\>telnet domain.com
Connecting To domain.com...Could not open connection to the host,
on port 23: Connect failed

C:\>telnet domain.com:25
Connecting To domain.com:25...Could not open connection to the host,
on port 23: Connect failed

I tried hyperterminal and when the status dhow connected I could get nothing to display. After a few seconds I was disconnected.

I assume that means I'm good?
 
Originally posted by: reicherb
Here are the results that I get:

C:\>telnet domain.com
Connecting To domain.com...Could not open connection to the host,
on port 23: Connect failed

C:\>telnet domain.com:25
Connecting To domain.com:25...Could not open connection to the host,
on port 23: Connect failed

I tried hyperterminal and when the status dhow connected I could get nothing to display. After a few seconds I was disconnected.

I assume that means I'm good?
Click to expand...
You need to use this command:

"telnet domain.com 25"

Your two previous attempts were trying port 23, not port 25.

After that you need to use the correct SMTP commands to actually try and send a message. Which looks something like this:

"HELO"
"MAIL From: someone@somedomain.com"
"RCPT To: someotherperson@blahblah.com"
"DATA"
"From: someone@somedomain.com"
"To: someotherperson@blahblah.com"
"Subject: Test Message"
"This is the body of the message"
""
"."
"QUIT"

You'll want to play with various senders and recipients in order to see if when/if relaying is allowed.
 
I see connecting to domain quickly flash on the screen followed by a blinking cursor (I hit enter a few times and get nothing.) followed by being returned to a cmd prompt.

Good?
 
Originally posted by: reicherb
I see connecting to domain quickly flash on the screen followed by a blinking cursor (I hit enter a few times and get nothing.) followed by being returned to a cmd prompt.

Good?
Click to expand...


once you get the blinking cursor, you are connected...start issuing your mail commands, youll see the output
 
You can test here... http://www.abuse.net/relay.html

I would either:

1. Make sure it is correct - but SMTP servers are frequently exploited.

2. Block inbound port 25 (SMTP) on your firewall (assuming you do not need to receive mail back!)

3. Don't use local SMTP and get your app. to use an external mail relay - I do this from a PHP app. and use AuthSMTP as the mail relay.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top