On 1/7/08, Julian Mehnle <julian(_at_)mehnle(_dot_)net> wrote:
Then they cannot talk SMTP to the outside Internet directly because TCP
return packets will be routed to where those IP addresses are
_officially_ allocated. Thus this is of no concern to MTAs receiving
inbound SMTP connections.
Sure about that?
What about ARP poisoning attacks. Remember, I stipulated that the IP
addresses are on the same external subnet/collision domain. In that
case the MAC address is used, not the IP address. There are ways to
address this (port lockdown for example) but it isn't always done.
-------------------------------------------
Sender Policy Framework: http://www.openspf.org
Archives: http://v2.listbox.com/member/archive/735/=now
RSS Feed: http://v2.listbox.com/member/archive/rss/735/
Modify Your Subscription:
http://v2.listbox.com/member/?member_id=2183229&id_secret=82601832-72d7e3
Powered by Listbox: http://www.listbox.com