Zimbra Vulnerability

[mkalmin]

Добрый день.
Есть проблема с уязвимостью 25 порта zimbra, можно написать с любого адреса на почту зная существующий адрес этого почтового сервера , хотя включена аутентификация 25 порта.



Good day.
There is a problem with vulnerability of port 25 of zimbra, you can write from any address to mail knowing the existing address of this mail server, although authentication of port 25 is enabled.

[phoenix]

There is a problem with vulnerability of port 25 of zimbra, you can write from any address to mail knowing the existing address of this mail server,....

That's not a vulnerability, any mail server will accept mail for a domain that it's hosting and that's how your users get their mail. If you think about it and required it to only accept mail from authenticated sources then you would never be able to receive email.

[mkalmin]

спасибо, за пояснения