Hello friends, just to inform you about the recent online availability of this program of mine. This one will test the security of your SMTP server and report any trouble that may occur. Check it here. Cheers ! Thibaut
I can add as many tests as you want. The program checks for third party relaying, TLS support, AUTH, VRFY, try to guess the MTA used and look for blacklist. Hope this helps. Cheers ! Thibaut
Is that good when it says "Host is an open relay !"? Heh, probably not, what exactly does that mean? It stopped on test 22/28.
Its not so good, actually reliable MTA like Postfix or Sendmail go up to test #28. It means you have a minor security trouble with your MTA. By the way tests beyond #10 are quiet tricky (espcially for Exchange . You should really worry if you fail on test #1 and #2. Cheers ! Thibaut
Hmmm... Actually my mail server just dropped yours after too many bad stuff. From test 15 through 19 you keep trying to send <test@[xx.xx.xx.xx]> where the IP is my mail server, and my server keep saying you cannot use literals (domain literals not allowed). So after the fifth reset it drops you. So, if my server would not drop you for thinking that you are a spammer, what would the remaining tests be? I won't be able to test it again, as my mail server now will block your server's IP for an extended period.
it actually and precisely is extremely bad to be open relay open relay means simply that ANYONE out there can use your smtp sertver to mail millions of spam free of charge thru your smtp server. that will most likely put YOUR server/IP soonest on all global blacklists and redirect all your true mail into spam or block them off if you tell what mail system you use ( postfix ) ? then you may get solutions. there are clean methods to allow only authorized traffic and thus keep your own records white and clean of spam record-entries in blacklists
operating system ? Linux or ?? MTA ? Pfx or ?? do you have root server or shared hosting for your smtp server ?? some FULL details are needed if you love real helpful answers
Hello, Its a C program running under Linux. Why do you need the source code ? Educationnal purposes ? Regards Thibaut
Its been already a while I opened this thread. Gee, almost 4 years By the way, the site is still up and running. I recently had minor issues with the script but this is okay now. If you want to comment on, or ask for improvement, never hesitate.
You can also run a complete mail server security test on EmailSecurityGrader.com – it has an extensive Open Relay test (including % hacks) and also includes several other email security tests (such as SPF, DNSBL/Spam Blacklist) which noawadays are at least as important as Open Relay.