Full Disclosure mailing list archives

RFC and silent discarding of e-mails (was: Backdoor not recognized by Kaspersky)

From: Martin Mačok <martin.macok () underground cz>
Date: Thu, 4 Mar 2004 10:13:25 +0100

On Thu, Mar 04, 2004 at 12:01:54AM -0600, Mike Barushok wrote:

Then there is the 'rejection' problem. If the mail is not accepted,
laws prohibit silently discarding it.


Yes, your SMTP servers should not silently discard the message to
comply with RFC 2821 (SMTP) but keep in mind that they also should not
inspect the content of the message and should assume the message is
valid.

On the other side - your application-level firewalls (SMTP filters)
can implement any "safe" subset of SMTP and are allowed to break RFC
2821 for valid reasons. See RFC 3234 (Middleboxes: Taxonomy and
Issues) and RFC 2979 (Firewall Requirements).

Martin Mačok

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

RE: Backdoor not recognized by Kaspersky, (continued)
- - RE: Backdoor not recognized by Kaspersky Nick FitzGerald (Mar 03)
- RE: Backdoor not recognized by Kaspersky Schmehl, Paul L (Mar 03)
  - Re[2]: Backdoor not recognized by Kaspersky Simbabque (Mar 03)
  - RE: Backdoor not recognized by Kaspersky Mike Barushok (Mar 03)
    - RE: Backdoor not recognized by Kaspersky Larry Seltzer (Mar 03)
    - SMTP "authentication" (was: RE: Backdoor not recognized by Kaspersky) Nick FitzGerald (Mar 03)
    - SMTP authentication will save the world (was: EXE not recognized in passworded ZIP by Kaspersky) Martin Mačok (Mar 03)
    - RE: Backdoor not recognized by Kaspersky Mike Barushok (Mar 03)
    - Re: Backdoor not recognized by Kaspersky Lan Guy (Mar 04)
    - RE: Backdoor not recognized by Kaspersky Matthew C. Beckman (Mar 04)
    - RFC and silent discarding of e-mails (was: Backdoor not recognized by Kaspersky) Martin Mačok (Mar 04)
    - Re: RFC and silent discarding of e-mails Luís Bruno (Mar 04)
    - Re: RFC and silent discarding of e-mails Martin Mačok (Mar 04)
    - Re: RFC and silent discarding of e-mails Luís Bruno (Mar 04)
    - RE: Backdoor not recognized by Kaspersky Larry Seltzer (Mar 04)
    - RE: Backdoor not recognized by Kaspersky Nick FitzGerald (Mar 04)
    - Re: Backdoor not recognized by Kaspersky Valdis . Kletnieks (Mar 04)
    - RE: Backdoor not recognized by Kaspersky Sean Crawford (Mar 04)
    - Re: Backdoor not recognized by Kaspersky Rodrigo Barbosa (Mar 04)
    - RE: Backdoor not recognized by Kaspersky Sean Crawford (Mar 04)
    - RE: Backdoor not recognized by Kaspersky Nick FitzGerald (Mar 04)

(Thread continues...)