Full Disclosure mailing list archives
RFC and silent discarding of e-mails (was: Backdoor not recognized by Kaspersky)
From: Martin Mačok <martin.macok () underground cz>
Date: Thu, 4 Mar 2004 10:13:25 +0100
On Thu, Mar 04, 2004 at 12:01:54AM -0600, Mike Barushok wrote:
Then there is the 'rejection' problem. If the mail is not accepted, laws prohibit silently discarding it.
Yes, your SMTP servers should not silently discard the message to comply with RFC 2821 (SMTP) but keep in mind that they also should not inspect the content of the message and should assume the message is valid. On the other side - your application-level firewalls (SMTP filters) can implement any "safe" subset of SMTP and are allowed to break RFC 2821 for valid reasons. See RFC 3234 (Middleboxes: Taxonomy and Issues) and RFC 2979 (Firewall Requirements). Martin Mačok _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- RE: Backdoor not recognized by Kaspersky, (continued)
- RE: Backdoor not recognized by Kaspersky Nick FitzGerald (Mar 03)
- RE: Backdoor not recognized by Kaspersky Schmehl, Paul L (Mar 03)
- Re[2]: Backdoor not recognized by Kaspersky Simbabque (Mar 03)
- RE: Backdoor not recognized by Kaspersky Mike Barushok (Mar 03)
- RE: Backdoor not recognized by Kaspersky Larry Seltzer (Mar 03)
- SMTP "authentication" (was: RE: Backdoor not recognized by Kaspersky) Nick FitzGerald (Mar 03)
- SMTP authentication will save the world (was: EXE not recognized in passworded ZIP by Kaspersky) Martin Mačok (Mar 03)
- RE: Backdoor not recognized by Kaspersky Mike Barushok (Mar 03)
- Re: Backdoor not recognized by Kaspersky Lan Guy (Mar 04)
- RE: Backdoor not recognized by Kaspersky Matthew C. Beckman (Mar 04)
- RFC and silent discarding of e-mails (was: Backdoor not recognized by Kaspersky) Martin Mačok (Mar 04)
- Re: RFC and silent discarding of e-mails Luís Bruno (Mar 04)
- Re: RFC and silent discarding of e-mails Martin Mačok (Mar 04)
- Re: RFC and silent discarding of e-mails Luís Bruno (Mar 04)
- RE: Backdoor not recognized by Kaspersky Larry Seltzer (Mar 04)
- RE: Backdoor not recognized by Kaspersky Nick FitzGerald (Mar 04)
- Re: Backdoor not recognized by Kaspersky Valdis . Kletnieks (Mar 04)
- RE: Backdoor not recognized by Kaspersky Sean Crawford (Mar 04)
- Re: Backdoor not recognized by Kaspersky Rodrigo Barbosa (Mar 04)
- RE: Backdoor not recognized by Kaspersky Sean Crawford (Mar 04)
- RE: Backdoor not recognized by Kaspersky Nick FitzGerald (Mar 04)