Tyrano2K
join:2001-07-29
Canada
1 edit | Just get a commricial service
if someone wants an e-mail service all they have to do is just get a commircial service for 30bucks more.
So blocking port 25 on residential services just keeps the spam down a bit.
--
~Tyrano2K
-
Owner Of RP614 Firmware Site
( »home.cogeco.ca/~firmware/ ) |
|
Boomerang86
Got FUD?
Premium
join:2002-10-18
VampireState
clubs: |  Old news...
Frontiernet made the announcement last week. I don't run a mail server, so it doesn't bother me. It really shoudn't matter to anyone on a residential account; we're not SUPPOSED to be running mail servers. |
|
pnh102
Reptiles Are Cuddly And Pretty
Premium
join:2002-05-02
Mount Airy, MD
 ·Comcast
| Thanks Idiots!
I would hereby like to thank all the clueless, ignorant, lazy or just plain stupid computer users out there for prodding my ISP into reducing the functionality of my internet connection because they are too clueless, ignorant, lazy or just plain stupid to learn about basic things like virus protection and to finally stop clicking on every single email attachment without thinking first. Do you all buy cars without learning how to drive as well?
I don't run my own mail server, but I do send email through my own domain hosting company's email server (mail."mydomain.com"). And thanks to all of you stupid fools out there, now I won't be able to do that. Ugh.
--
Do the world a favor, Saddam. Kill yourself. |
|
jdmatl
join:2000-04-27
Deerfield Beach, FL
|  Block 25, then some will make it 21 or 22
Blocking SMTP outbound isn't the answer. The major reason IPS's do this is force the uneducated to use their typically crummy mail servers and addresses.
Yeah, that blocking of port 25 has works soooooo well for earthlink hasn't it. When is the last time I "didn't" get spam that was sent from a earthlink dialup account?
Most users won't switch ISP's cause of their email address. The ISP has them. Anybody want to introduce email address port-ability?  Look how well that is going in the Cellphone world.
Next thing you know is that someone will write a virus that uses port 80. Quick the sky is falling let block outbound port 80?
Wait, I know lets "federalize" the "Net" to fix it. Lets put the federal government in charge! 
After all that worked so well with airport security. What was it last week, a woman got on a plane with a hacksaw blade. Those TSA guys are making me feel safer to fly all the time! |
|
Camelot One
Premium,MVM
join:2001-11-21
Sarasota, FL
clubs:
| reply to pnh102
Re: Thanks Idiots!
I am in the same boat. This will prevent all users from being able to say, send email from their work address at home. Anyone with a Road Runner accoun tfor example can only send email from their rr email address.
Stupid. Just plain stupid.
--
AMD XP2500+ @2388mhz/ Asus A7N8X-E Deluxe/ 2x 512Mb Kingston HyperX PC3500/ WD 120Gb on serial/ Gainward GF4 4600/ Enermax 465P-VE/Custom water cooler |
|
pcscdma
Chocobo Chocobo Random Battle
Premium
join:2004-01-14
Winterset, IA
clubs:
| Good for them
whenever a worm comes out, ISPs have somewhat of a responsibility of temporarily cutting off access to the ports affected if they aren't something useful like 80.
I don't find outgoing 25 to affect me at all, since Earthlink doesn't allow my IP range and they have a webmail portal. |
|
LBDSL
Lightning Bolt
VIP
join:2002-01-07
Auburn Hills, MI
| reply to Camelot One
Re: Thanks Idiots!
said by Camelot One  :
Anyone with a Road Runner accoun tfor example can only send email from their rr email address.
This isn't totally true, at least not in some parts of the US.
I have a few clients who use RoadRunner to access the net, but use us to host their site, and email.
They are able to use the SMTP server we give them with their hosting account to send mail.
--
Lightning Bolt Technologies |
|
Steve
I'm a PC, so shut up
Consultant
join:2001-03-10
Yorba Linda, CA
| reply to Camelot One
said by Camelot One :
I am in the same boat. This will prevent all users from being able to say, send email from their work address at home. Anyone with a Road Runner accoun tfor example can only send email from their rr email address.
Stupid. Just plain stupid.
What's stupid is that Road Runner even considers the "From" address when relaying email - this is no kind of security (I understand Verizon did this too, perhaps they still do).
If the source IP address is from a "trusted" source - from within RoadRunner's own network - there is no good reason for disallowing users to include any From: address they wish, including valid work addresses.
An ISP that blocks outbound 25/tcp and limits users to the @isp.net From address is doing a bad thing.
Steve
--
Stephen J. Friedl * Security Consultant * Tustin, California USA * my web site |
|
jester121
Premium
join:2003-08-09
Lake Zurich, IL
 ·surpasshosting
 ·ViaTalk
| reply to pnh102
said by pnh102 :
I don't run my own mail server, but I do send email through my own domain hosting company's email server (mail."mydomain.com"). And thanks to all of you stupid fools out there, now I won't be able to do that. Ugh.
Since you're on Comcast you can use whatever you want in the FROM address on your e-mail, and send it through smtp.comcast.net. In other words, the e-mail shows up as coming from "pnh102@yourdomain.com".
Unless the recipient looks at the headers, there's no way they'd even notice it. With SMTP-Auth turned on (which Comcast does support) you can even do this from an wifi hotspot anywhere on the internet without changing e-mail settings (if you use a laptop).
Next objection? |
|
GeekNJ
Premium
join:2000-09-23
Waldwick, NJ
| Bad move :-(
So what happens next... a virus that figures out what your ISPs mail server is and sends out mail through that, just as it would any other email server? Any way to protect against that?
Blocking 25 is not the right solution and hurts those that do have legitimate needs for sending mail out through a mail server that doesn't belong to their ISP. I pay for web hosting which includes email from a company (my ISP doesn't provide hosting). I can't use that mail server that I pay for as an outgoing mail server? Sounds pretty dumb to me.
--
Have you tweaked your OOL connection? |
|
GeekNJ
Premium
join:2000-09-23
Waldwick, NJ
1 edit | reply to pcscdma
Re: Good for them
How about all ISPs implement virus checking at their mail servers. That would prevent any inbound mail that is infected from entering their network and getting to their subscribers computers.
Instead of relying on hundreds of thousands of subscribers to stay current on every virus, wouldn't it be easier for the ISP or mail server provider to provide centralized protection?
--
Have you tweaked your OOL connection? |
|
Nice Try5
join:2003-04-17
Silver Spring, MD
| reply to pnh102
Re: Thanks Idiots!
»www.dnsmadeeasy.com/s0306/prod/msf.html
$15.95 a year and problem solved.
Of course, I'm with you, you shouldn't have to pay more but at least there is a solution for you. |
|
ChrisN4BSA
Premium
join:2002-05-31
Clearwater, FL
1 edit | reply to Camelot One
This isn't totally true. I'm net admin for a company here in Tampa, and was able to use our company SMTP server (port 25) via my home Roadrunner connection.
However - just today we have implemented a new non standard inbound SMTP port that will allow us to get around the port 25 filtering for those employees that are lucky enough (or is that unlucky?) to be on an ISP that blocks port 25 SMTP traffic.
And - as much as it sucks, amen for the ISP's blocking port 25. I hate to be punished for clueless users, but if it helps slow down the spread of viruses that spread via email, I'm all for it. I'm sick & tired of having to spend hours every day checking our mail quarantine because of all spam zombies in the wild. |
|
pcscdma
Chocobo Chocobo Random Battle
Premium
join:2004-01-14
Winterset, IA
clubs:
| reply to GeekNJ
Re: Good for them
said by GeekNJ :
Instead of relying on hundreds of thousands of subscribers to stay current on ever virus, wouldn't it be easier for the ISP or mail server provider to provide centralized protection?
That is almost like relying on Microsoft for all software.
Each AV has benefits and drawbacks. Symantec has been getting a bad review and it seems like Trend is getting better and better. If Trend reacted slower than other vendors it would not be very good for end-users.
Not staying current on antivirus is just being plain ignorant. |
|
MWR2NY
join:2002-02-06
Edgewood, MD
| reply to jester121
Re: Thanks Idiots!
I'm on Comcast and last November when Comcast decided to block port 25 they didn't tell anybody including their own tech support. I went about a week without being able to send mail through my own domain. It took a couple days of tech support at my web host to figure out a work around. Comcast and other ISP's should of posted something to let everyone know what they were doing. |
|
Nice Try5
join:2003-04-17
Silver Spring, MD | I don't believe comcast is blocking 25 in my area. I can still send and receive mail. |
|
AthlGrond
Premium,MVM
join:2002-04-25
Aurora, CO
·Comcast
| reply to GeekNJ
Re: Good for them
said by GeekNJ :
How about all ISPs implement virus checking at their mail servers.
Our exchange hosting company does this for us.
They're quite effective, we have seen a total of two virus infected emails in the last 3 years.
--
System protected by Impregnable Ignorance (TM) |
|
Seven1
join:2002-07-24
Lexington, KY
·Insight Communicat..
| Block it if you will
It would irritate me if my ISP did block outgoing port 25, but I'd live with it. I run my own hosting business and I made sendmail accessible on port 26 as well as 25, a long time ago. I did it since Cox was blocking outgoing 25 and some of my customers were getting pissed about not being able to send email because of that. |
|
lakino
Premium
join:2003-04-03
Campbell, CA
| reply to GeekNJ
Re: Bad move :-(
said by GeekNJ :
So what happens next... a virus that figures out what your ISPs mail server is and sends out mail through that, just as it would any other email server? Any way to protect against that?
Blocking 25 is not the right solution and hurts those that do have legitimate needs for sending mail out through a mail server that doesn't belong to their ISP. I pay for web hosting which includes email from a company (my ISP doesn't provide hosting). I can't use that mail server that I pay for as an outgoing mail server? Sounds pretty dumb to me.
Another problem is that many ISPs only allow a certain size limit to outgoing mail. Part of the reason I pay each month to host my own domain name and have mail routed through them is so that I have NO limits whatsoever on outgoing as well as incoming mail. I can send out 100 meg attachments or receive 100 meg attachments. I'd like to see someone try doing that via SBC/YAHOO.
--
Why do people like .sig files so much? Baffling to me... |
|
ParanoiaInc
join:2002-08-28
Tucker, GA | Block Port 25 & Revise SMTP Protocol
While I recognize the necessity of blocking port 25, I also recognize that SMTP without authentical (like POP) is just asinine. |
|
