Comments on: ESP unwittingly used to send spam http://blog.wordtothewise.com/2008/02/esp-unwittingly-used-to-send-spam/ Spam, delivery, email and more Tue, 06 Jan 2009 07:55:00 +0000 http://wordpress.org/?v=2.5.1 By: Timothy Denike http://blog.wordtothewise.com/2008/02/esp-unwittingly-used-to-send-spam/#comment-2005 Timothy Denike Tue, 18 Mar 2008 01:14:50 +0000 http://blog.wordtothewise.com/index.php/2008/02/11/esp-unwittingly-used-to-send-spam/#comment-2005 I recall encountering a similar issue at my previous employer with our Ironport A60. We had a SMTPRoute which relayed a particular subdomain to an inside machine for processing. (Bounces, etc.) An outside sender (spammer) could craft a message with a rcpt to within that subdomain, but an envelope To of a third-party (spamee) address DIFFERENT than the rcpt to. The Ironport would happily forward the message to the inside box, which would then relay the message back outside. I wonder if this is the same issue? I recall encountering a similar issue at my previous employer with our Ironport A60.

We had a SMTPRoute which relayed a particular subdomain to an inside machine for processing. (Bounces, etc.) An outside sender (spammer) could craft a message with a rcpt to within that subdomain, but an envelope To of a third-party (spamee) address DIFFERENT than the rcpt to.

The Ironport would happily forward the message to the inside box, which would then relay the message back outside.

I wonder if this is the same issue?

]]> By: Word to the Wise » Ironport response http://blog.wordtothewise.com/2008/02/esp-unwittingly-used-to-send-spam/#comment-1368 Word to the Wise » Ironport response Wed, 20 Feb 2008 20:42:36 +0000 http://blog.wordtothewise.com/index.php/2008/02/11/esp-unwittingly-used-to-send-spam/#comment-1368 [...] by laura on 20 Feb 2008 at 01:42 pm | Tagged as: Industry, Technical Last week I posted about a ESP that had a misconfiguration in their Ironport A60s that let spammers use the A60s to [...] [...] by laura on 20 Feb 2008 at 01:42 pm | Tagged as: Industry, Technical Last week I posted about a ESP that had a misconfiguration in their Ironport A60s that let spammers use the A60s to [...]

]]> By: Mike Hillyer.com » Blog Archive » Another Advantage of Feedback Loops http://blog.wordtothewise.com/2008/02/esp-unwittingly-used-to-send-spam/#comment-1367 Mike Hillyer.com » Blog Archive » Another Advantage of Feedback Loops Wed, 20 Feb 2008 18:32:05 +0000 http://blog.wordtothewise.com/index.php/2008/02/11/esp-unwittingly-used-to-send-spam/#comment-1367 [...] blog entry at Word To The Wise talks about a new exploit discovered in the IronPort A60 series: IronPort Open [...] [...] blog entry at Word To The Wise talks about a new exploit discovered in the IronPort A60 series: IronPort Open [...]

]]>