= Сообщение: 10357 из 12490 ===================================== ENET.SYSOP = От : Alexey Vissarionov 2:5020/545 18 Feb 21 23:00:00 Кому : Michiel van der Vlist 18 Feb 21 23:00:00 Тема : Ping FGHI : area://ENET.SYSOP?msgid=2:5020/545+602ece7d На : area://ENET.SYSOP?msgid=2:280/5555+602e9df4 = Кодировка сообщения определена как: CP866 ================================== Ответ: area://ENET.SYSOP?msgid=2:280/5555+602f87ca ============================================================================== Good ${greeting_time}, Michiel!
18 Feb 2021 17:54:52, you wrote to me:
MvdV>>> Could it be that your system does not process netmail from the MvdV>>> unsecure inbound? AV>> That's normal. Properly configured system must not (as in FTA-1006) AV>> automatically process anything received via insecure session and not AV>> addressed to the sysop. MvdV> What about messages to Ping?
They are not addressed to the sysop.
AV>> Also, hosts and hubs are allowed (and obliged by the FPD) to AV>> automatically route insecure netmail to their downlinks. That's all. MvdV> Oh c'mon... In the days of Fido over IP that is needlessly MvdV> restrictive. For compressed mail there is the risk of a mail MvdV> bomb, but there is no comparable risk for uncompressed *.pkt. MvdV> The risk of automatically processing uncompressed netmail is MvdV> almost zero. In the past there was the "imposing undue cost MvdV> on others" argument. But that is no longer an issue except MvdV> for the rare POTs only system. MvdV> My system happyly processes uncompressed netmail from the MvdV> unsecure inbound. No restrictions.
Exploitable.
-- Alexey V. Vissarionov aka Gremlin from Kremlin gremlin.ru!gremlin; +vii-cmiii-ccxxix-lxxix-xlii
