FAQ / Policy controls / Q0717

/Q0701   /Q0702   /Q0703   /Q0704   /Q0705   /Q0706   /Q0707   /Q0708   /Q0709   /Q0710   /Q0711   /Q0712   /Q0713   /Q0714   /Q0715   /Q0716   /Q0717   /Q0718   /Q0719   /Q0720   /Q0721   /Q0722   /Q0723   /Q0724   /Q0725   /Q0726   /Q0727   /Q0728   /Q0729   /Q0730   /Q0731   /Q0732   /Q0733   /Q0734   /Q0735   /Q0736   /Q0737   /Q0738   /Q0739   /Q0740   /Q0741   /Q0742   /Q0743   /Q0744  

Q0717

Question

When using Nessus on a system that runs Exim, a number of security issues are raised. Nessus complains that Exim answers to EXPN and/or VRFY; sometimes it even complains that Exim allows relaying.

Answer

Exim supports EXPN and VRFY only if you permit it to do so in the ACLs defined by acl_smtp_expn and acl_smtp_vrfy, respectively. Otherwise, its responses are 

550 Administrative prohibition
252 Administrative prohibition

Maybe the use of 252 is the “problem”. It is recommended that this be done (by those that discuss these things) because there are stupid clients that attempt VRFY before sending a message.

/Q0701   /Q0702   /Q0703   /Q0704   /Q0705   /Q0706   /Q0707   /Q0708   /Q0709   /Q0710   /Q0711   /Q0712   /Q0713   /Q0714   /Q0715   /Q0716   /Q0717   /Q0718   /Q0719   /Q0720   /Q0721   /Q0722   /Q0723   /Q0724   /Q0725   /Q0726   /Q0727   /Q0728   /Q0729   /Q0730   /Q0731   /Q0732   /Q0733   /Q0734   /Q0735   /Q0736   /Q0737   /Q0738   /Q0739   /Q0740   /Q0741   /Q0742   /Q0743   /Q0744  

FAQ / Policy controls / Q0717

CategoryFrequentlyAskedQuestions

EximWiki: FAQ/Policy_controls/Q0717 (last edited 2008-09-25 11:39:28 by localhost)