Video Screencast Help
Search Video Help Close Back
to help
New in the Rewards Catalog: Vouchers for "Symantec Technical Specialist" and "Symantec Certified Specialist" exams.

Internal Mail Relay

Updated: 20 Sep 2010 | 5 comments
Carlos Henrique Oliveira's picture
Carlos Henrique Oliveira
0 0 Votes
Login to vote

   Hello everyone,

   I have been searching a solution for all the week, but can not get it working right yet.

   Our Brightmail 8.0.2 is accepting Internal Mail Relay.

   How i can prove it:

   From an outside IP, i make a telnet connection to my Brightmail server, than, i send an e-mail pretending to be a user from my company (fake@mycompany.com.br) sending a mail message to someone inside (real-user@mycompany.com.br).

   The e-mail goes directly to the user.

   What i have done so far:

   Spam -> Sender Authentication

  

   (The Brightmail is set to Hold Message in Spam Quarantine if caught here)

   Also, i verified that this is set too:

   Administration -> Configuration -> myserver.mydomain.com.br -> SMTP -> Advanced Settings

  
  

   But i still able to send fake sender e-mail to my users.

   Does anyone have any clue ?

   Thanks a lot !
   Carlos Oliveira

 

discussion Filed Under:
, , , , ,

Comments

AdnanH's picture
18
Mar
2010
0 Votes 0
Login to vote
AdnanH
Symantec Employee
Accredited

Hi Carlos, Please take a look

Hi Carlos,

Please take a look at the following KB article:

http://service1.symantec.com/SUPPORT/ent-gate.nsf/...

Regards,

Adnan

Prashant Thumar's picture
19
Mar
2010
0 Votes 0
Login to vote
Prashant Thumar
Accredited

Hi Carlos


Hi Carlos,

As per your post you are saying that you tryed telneting your brightmail appliance from outside your corporate network and send a mail.

Solution.....

So it looks like that mail server or brightmail is an open relay. To block this please contact your firewall vendor to configure the same.

 

Regards,

Prashant Thumar

Prashant Thumar's picture
19
Mar
2010
0 Votes 0
Login to vote
Prashant Thumar
Accredited

Open Relay Check

Hi Carlos,

You can also take a help of mxtoolbox.com to check your domain for Open relay..

 

Regards,

Prashant Thumar

Carlos Henrique Oliveira's picture
19
Mar
2010
0 Votes 0
Login to vote
Carlos Henrique Oliveira

Only INTERNAL open-relay

   Hi folks,

   Thanks for all the help already... but just to make this point clear: my server is not an open-relay.

   Outsiders cannot send e-mail trough my server to other domains.

   This problem is just an INTERNAL open-relay, wich means that outsiders can send e-mail pretending to be a third domain to my internal users.

   Anyway, i am still searching, i am working on the page AdnanH informed, i will post results later.

   Thanks to all !
   Carlos Oliveira

AdnanH's picture
19
Mar
2010
0 Votes 0
Login to vote
AdnanH
Symantec Employee
Accredited

You are welcome, Carlos. I

You are welcome, Carlos.

I hope that KB article helps to resolve the issue.

Regards,

Adnan

Technical Support

Symantec.com

Store

Community Stats

Total Content Items
Members
259,014