[SOLVED] Re: [OT] Error sending mail from off-network... (details inside)

Eric Crist ecrist at secure-computing.net
Wed Oct 13 11:26:55 PDT 2004

On Oct 13, 2004, at 10:05 AM, Ed Budd wrote:

> Eric Crist wrote:
>> On Oct 13, 2004, at 7:00 AM, Subhro wrote:
>>> Are you authenticating yourself before attempting to send out mail to
>>> the ISP SMTP. To prevent spammers, almost all ISPs allow the use of
>>> their SMTPs only after you prove them that you are really a 
>>> legitimate
>>> customer. Also many ISPs wont allow you to use their mailservers
>>> unless the IP which you are using (rather which had been assigned to
>>> you) belongs to their own pool.
>>> Regards
>>> S.
>> I am trying to use my own SMTP server, not my ISPs.  Not only that, 
>> but I AM trying to authenticate.  As I said in my previous post, I 
>> can send when dialing in to the 'net, but not when connecting from 
>> the ghetto network I'm on here.  Only SMTP traffic seems to be 
>> stopping/timing out.  I can receive mail just fine.
> I had this problem once at a hotel. Turned out the hotel was 
> transparently intercepting smtp traffic and funnelling it through 
> their own relays. T-Bird's CRAM-MD5 auth was failing because their 
> relays didn't support it. Try telnetting to what you think is your 
> smtp server and see if your own banner comes up or something else -- 
> that's how I discovered what was happening. It was a little unnerving 
> until I figured it out.
> Out of spite I just tunnelled everything through ssh. How dare they 
> f**k with my mail!
> EB

Yeah.  Shortly after sending my last email, I did just that.  Their 
server responds that it _is_ my server, but AUTH and other things don't 
work.  I'm staying at a hotel, but I just so happen to be installing 
new access-control hardware for this casino, which owns the hotel.  
Their MIS/IT staff aren't the brightest, and I've come to learn that 
there is not SMTP server setup to handle the funneling.  Kinda ironic - 
they funnel to their non-existent mail server.

To fix this, I opened a non-standard port on my mail server and was 
using that.  What I realized was they aren't blocking 465, which is 
open for SSL, which I had just forgotten to setup on this new laptop 
(bought it two days before going out of town).

Long story short - their IT staff aren't the brightest.

Eric F Crist
Secure Computing Networks
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 194 bytes
Desc: This is a digitally signed message part
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20041013/62160ced/PGP.bin

More information about the freebsd-questions mailing list