[spambayes-bugs] [ spambayes-Patches-797579 ] Disable connections to POP3 and SMTP from remote hosts

SourceForge.net noreply at sourceforge.net
Fri Aug 29 16:43:23 EDT 2003 

Patches item #797579, was opened at 2003-08-29 18:43
Message generated for change (Tracker Item Submitted) made by Item Submitter
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=498105&aid=797579&group_id=61702

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Khouri Giordano (kgiordano)
Assigned to: Nobody/Anonymous (nobody)
Summary: Disable connections to POP3 and SMTP from remote hosts

Initial Comment:
I wasn't comfortable having ports 25 and 110 open on my
machine at work. The mail servers that the proxy
redirects to are public, but that doesn't mean I want
the whole company able to poke at my machine.

On the config page, you can now allow or disallow
connections from remote machines. There are separate
settings for POP3 and SMTP.

Any connection from a remote machine, whether accepted
or rejected, will be logged to the console. This
applies to any POP3, SMTP or config (port 8880) connection.

As a bonus...

Three things annoyed me while reviewing messages:

1) Unless I made the browser window large enough to
accomodate every subject, every line took two lines
because "Show clues" would line break on the space.
That space is now non-breaking.

2) Since I get huge amounts of spam every day (200+),
the table is very tall. I kept forgetting which column
of radio buttons was which. So I labeld each Discard,
Defer, Ham and Spam radio button with X, O, H and S,
respectively.

3) The Discard, Defer, Ham and Spam radio buttons
didn't actually line up with the headers, so now they
have their own columns.

These three changes will be applied if you update
ui.html and ui_html.py.

The NoRemotes.zip file contains replacements for
several files. I made these changes based on v1.0a4.

Note:

I am a native C++ programmer and Python is very new to
me. There may be better ways to do what I did. In
reality, connections are always accepted. The
"rejected" ones are closed immediately. This means that
they DO show up on a port scan. I don't know if there
is way to check the peer address without accepting the
connection.

TODO:

For ultimate flexibility, some remote connections
should be alllowed. I'm thinking of the way that Samba
accepts a list of host/netmasks.

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=498105&aid=797579&group_id=61702

More information about the Spambayes-bugs mailing list