Webone blocking port 25??

Paul Bryan pa_bryan at yahoo.co.uk
Thu Jul 25 10:52:50 EST 2002


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I was just wondering why you might not use your ISP's mail relay? 

I use my IPS's relay because any mails gonna' go through their network 
anyway, might as well get the ISP's relay to do all the dirty work of 
figuring out where the mails going and handling the transmission and so 
forth. 

Is there any reason why this might be bad for a home user (aside from the 
obvious, like when the mail relay is down)?

It seemed to me the best way to do things. They've got the relay sitting 
there happy to send on my mail - might as well use it.

Any thoughts?

Cheers,
Paul Bryan.

On Thu, 25 Jul 2002 10:19, Stuart Watson wrote:
> On 25/07/2002 at 9:41 AM Alex Satrapa wrote:
> >On Thursday, July 25, 2002, at 12:13 , David Clarke wrote:
> >> Not sure that they'll fix it, I emailed them about it and got an
>
> email
>
> >> back about it being in place to stop something from happening....
> >
> >Any ISP worth their salt *should* block port 25 outgoing, and
>
> require
>
> >clients to send mail through the ISP's relay.  Mainly to prevent
> >Microsoft Outlook being used as a viral proliferator.  There's also
>
> the
>
> >advantage of having a virus scanner being run over your mail inbound
>
> and
>
> >outbound.
>
> Another reason for ISPs to block 25 is poorly configured
> wingate/proxy/linux/nt/whatever machines that act as open relays.
> Many of you have probably seen the mess a dial up connection can do
> as a relay - just imagine a 1mbit connection.
>
> >I'm of split minds as to whether it would be reasonable to expect
>
> the
>
> >ISP to poke holes in their firewall for clients who ask.  After all
>
> -
>
> >all it takes is for one virus to get into your only Windows box, and
> >
> >you've just become part of the problem.
>
> It comes down to how prepared the ISP is to do custom configurations
> on a per user basis, on a large scale setup where multiple systems
> have a streamline configuration, admins will probably cringe at the
> idea of messing around with rules/conf for a few users. However
> smaller operations will probably have no problem with a quick
> iptables -I.
>
> I guess this is where the real distinction between a "home" and a
> "business" connection come into play - business connections are
> really for people who have the need to run their own internal mail
> servers and so forth and are 'untouched' connections usually w/ perm
> IPs, faster speeds for this reason.
>
> -SW

- -- 
Paul Bryan
E-Mail: pa_bryan at yahoo.co.uk

PGP Key
http://www.keyserver.net:11371/pks/lookup?op=get&search=0xB1D405DA

"The pathology is to want control, not that you ever get it, because of
course you never do."
- -- Gregory Bateson
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE9P0vl3qGyTLHUBdoRAvQkAJ9Kge+fbIL+jBpBfoduC3hrgnWFPgCeLVYK
XKHyAbijK/vnZZNL04DOTOM=
=JZb8
-----END PGP SIGNATURE-----




More information about the linux mailing list