How to secure James from open relay?

[Shrinivasan T <ts...@gmail.com>]

Hi,

We use James to send mails to users from our application.

I am received the following message from my security people:

The remote SMTP server is insufficiently protected against relaying.
This means that it allows spammers to use your mail server to send
their mails to the world,
thus wasting your network bandwidth.

Please advise on how to secure the SMTP server.

Thanks.

-- 
Regards,
T.Shrinivasan


My experiences with Linux are here
http://goinggnu.wordpress.com

For Free and Open Source Jobs
http://fossjobs.wordpress.com

---------------------------------------------------------------------
To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
For additional commands, e-mail: server-user-help@james.apache.org

Re: How to secure James from open relay?

[Eric MacAdie <er...@MacAdie.net>]

Usually a good idea is to post your config.xml file to the list 
(removing any passwords) and ask people to take a look at it.

I think that one way to stop James from acting as an open relay it is to 
set James to require authorization to send emails. I think you can find 
that in config.xml at config/smtpserver/handler/authRequired

Eric MacAdie

Shrinivasan T wrote:
> Hi,
>
> We use James to send mails to users from our application.
>
> I am received the following message from my security people:
>
> The remote SMTP server is insufficiently protected against relaying.
> This means that it allows spammers to use your mail server to send
> their mails to the world,
> thus wasting your network bandwidth.
>
> Please advise on how to secure the SMTP server.
>
> Thanks.
>
>   


---------------------------------------------------------------------
To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
For additional commands, e-mail: server-user-help@james.apache.org