如何检测邮局是否存在中继漏洞?
很多人都对自己的邮局进行的严格的配置,但是还是很担心是否存在中继的漏洞?使用类似于DOS的命令来进行检测,俺还没有到那个水平,语句那么多也懒得去记住,那么有没有简单的方法可以检测呢?肯定是有的,通过下面的网站就可以进行所有的检测了:
http://www.abuse.net/relay.html
直接在Address to test:中输入邮局的IP,然后点击Test for Relay就可以了,多简单啊! Mail relay testing
Connecting to 58.64.*.* for anonymous test ...
<<< 220 ESMTP on WinWebMail ready.http://www.winwebmail.com
>>> HELO www.abuse.net
<<< 250 HELO
Relay test 1
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@abuse.net>
<<< 250 OK
>>> RCPT TO:<securitytest@abuse.net>
<<< 550 Local user only or Authentication mechanism
Relay test 2
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest>
<<< 503 input error.
Relay test 3
>>> RSET
<<< 220 OK
>>> MAIL FROM:<>
<<< 250 OK
>>> RCPT TO:<securitytest@abuse.net>
<<< 550 Local user only or Authentication mechanism
Relay test 4
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<securitytest@abuse.net>
<<< 550 Local user only or Authentication mechanism
Relay test 5
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<securitytest@abuse.net>
<<< 550 Local user only or Authentication mechanism
Relay test 6
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<securitytest%abuse.net@>
<<< 550 Local user only or Authentication mechanism
Relay test 7
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<securitytest%abuse.net@>
<<< 550 Local user only or Authentication mechanism
Relay test 8
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<"securitytest@abuse.net">
<<< 550 Local user only or Authentication mechanism
Relay test 9
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<"securitytest%abuse.net">
<<< 505 input error.
Relay test 10
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<securitytest@abuse.net@>
<<< 550 Local user only or Authentication mechanism
Relay test 11
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<"securitytest@abuse.net"@>
<<< 550 Local user only or Authentication mechanism
Relay test 12
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<securitytest@abuse.net@>
<<< 550 Local user only or Authentication mechanism
Relay test 13
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<@:securitytest@abuse.net>
<<< 550 Local user only or Authentication mechanism
Relay test 14
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<@:securitytest@abuse.net>
<<< 550 Local user only or Authentication mechanism
Relay test 15
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<abuse.net!securitytest>
<<< 505 input error.
Relay test 16
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<abuse.net!securitytest@>
<<< 550 Local user only or Authentication mechanism
Relay test 17
>>> RSET
<<< 220 OK
>>> MAIL FROM:<spamtest@>
<<< 250 OK
>>> RCPT TO:<abuse.net!securitytest@>
<<< 550 Local user only or Authentication mechanism
Relay test result
All tests performed, no relays accepted. 万一这个网站是用来收集可中继邮局信息……:L 先留个名,不知3楼说的有没有道理,0-0,以后慢慢研究。、
谢楼主先 原帖由 jiayoua 于 2011-12-8 13:04 发表 http://bbs.5dmail.net/images/common/back.gif
万一这个网站是用来收集可中继邮局信息……:L
你以为不检测别人就知道不了你的服务器漏洞了?只要会配置,还怕中继漏洞吗? Not Found
The requested URL /cgi-bin/relaytest was not found on this server.
页:
[1]