Open huwbart opened 5 months ago
Papercut SMTP is designed to be used on LOCALHOST and bound to LOCALHOST:25. Why would it need security by default? I can look at supporting this but it's complex and gets outside the current scope of what the project is used for.
It's obviously NOT an open relay so you could just ignore that too.
Issue should be: support authentication on the SMTP
Hello Jaben,
Many thanks for the reply – I understand the logic and agree it isn’t necessarily needed but its flagging up on security vulnerability reports so I have to investigate options.
Huw Owen
Huw Owen
IT Infrastructure Manager
Direct Line: +44 (0)20 7825 7204<tel:+44%20(0)20%207825%207204>
Mobile: +44 (0)7834 251 776<tel:+44%20(0)7834%20251%20776>
Email: @.**@.>
@.*** Argenta Holdings Limited
Registered office: 5th Floor, 70 Gracechurch Street, London, EC3V 0XL Registered in England number 4973117
www.argentagroup.com http://www.argentagroup.com/
At Argenta, we operate a flexible approach to our start and finish times, but all employees work between the core hours of 10am and 4pm. Therefore, you may receive emails from me outside of usual working hours; please do not feel any pressure to read, action or respond to these outside of your own working day.
This email, together with any attachments, is for the exclusive and confidential use of the recipients. Any other distribution, use or reproduction without the sender's prior consent is unauthorised and strictly prohibited. If you have received this message in error, please notify the sender by email immediately and delete the message from your computer without making any copies. From time to time we collect personal information through email correspondence with you for the purpose of conducting day to day business. For information on how we treat your personal information, please refer to our privacy policy https://www.argentagroup.com/media/1076
From: Jaben Cargman @.> Sent: Tuesday, April 23, 2024 2:39 PM To: ChangemakerStudios/Papercut-SMTP @.> Cc: Owen, Huw @.>; Author @.> Subject: Re: [ChangemakerStudios/Papercut-SMTP] SMTP Open Relay (Issue #261)
ALERT: This message originated outside of Argenta's network - BE CAUTIOUS before clicking on any links or attachments.
Papercut SMTP is designed to be used on LOCALHOST and bound to LOCALHOST:25. Why would it need security by default? I can look at supporting this but it's complex and gets outside the current scope of what the project is used for.Ithttp://for.It's obviously NOT an open relay so you could just
Papercut SMTP is designed to be used on LOCALHOST and bound to LOCALHOST:25. Why would it need security by default? I can look at supporting this but it's complex and gets outside the current scope of what the project is used for.
It's obviously NOT an open relay so you could just ignore that too.
— Reply to this email directly, view it on GitHubhttps://github.com/ChangemakerStudios/Papercut-SMTP/issues/261#issuecomment-2072350089, or unsubscribehttps://github.com/notifications/unsubscribe-auth/BFUBRM5NX3GAXGO3CRCIEODY6ZQATAVCNFSM6AAAAABCMHZ42GVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDANZSGM2TAMBYHE. You are receiving this because you authored the thread.Message ID: @.**@.>>
The PaperCut-SMTP software is being detected as an open SMTP relay by our security scanning software, doesn't appear to be a way to secure the connection with a username/password. Can an option be added to require a username/password to connect?