Beefy Boxes and Bandwidth Generously Provided by pair Networks
"be consistent"
 
PerlMonks  

Re: Postfix: Piping an email into a PERL script

by MidLifeXis (Monsignor)
on Apr 26, 2013 at 15:12 UTC ( #1030851=note: print w/replies, xml ) Need Help??


in reply to Postfix: Piping an email into a PERL script

May I suggest some sort of cryptographic signing of the request? Headers are very easy to spoof.

--MidLifeXis

  • Comment on Re: Postfix: Piping an email into a PERL script

Replies are listed 'Best First'.
Re^2: Postfix: Piping an email into a PERL script
by Zzenmonk (Sexton) on Apr 26, 2013 at 15:22 UTC

    This is definitely something one should think of. My solution is implemented behind the MTA of the network. The MTA takes care of security in my case. I mean as good as it can (DNSBL, spam filter and so on).

    The best medicine against depression is a cold beer!

      Is there a need to protect against internal users spoofing this? It is quite easy to speak SMTP.

      --MidLifeXis

        Indeed! And I do not know how to protect a mail server from faked headers! I mean you can just telnet the port 25 of a MTA and write whatever you want. Mail is a risk, remains a risk and will always remain a risk.

        The best medicine against depression is a cold beer!

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?
Node Status?
node history
Node Type: note [id://1030851]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others meditating upon the Monastery: (7)
As of 2022-01-18 21:54 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    In 2022, my preferred method to securely store passwords is:












    Results (54 votes). Check out past polls.

    Notices?