SMTP, 2600, and the security of mail


Rob Austein (SRA@XX.LCS.MIT.EDU)
Wed, 1 Oct 1986 15:51 EDT


    Date: Monday, 29 September 1986 18:17-EDT
    From: Stu Grossman <GROSSMAN@Sierra.Stanford.EDU>

    You could (marginally) increase the security of SMTP traffic by having
    SMTP servers only accept connections from a 'privileged' remote socket.

Bad idea. Nobody has ever agreed on what a "priviledged port" is.
Berkeley has used that concept for some of their net code (I'm
thinking of LPD in particular). It doesn't add any security when
talking to TOPS-20 or ITS, it's just a pain in the butt because I
can't let the TCP software do the local port multiplexing for me.

This whole discussion seems pretty pointless, since everybody accepts
the need for mail relays and you can't ever possibly verify what
happened on the other side of the mail relay.



This archive was generated by hypermail 2.0b3 on Thu Mar 09 2000 - 14:36:58 GMT