|
On Tue, Nov 04, 2003 at 11:28:04PM -0200, .::. Viperman .::. wrote:
> Hello Everyone,
>
> I'm successfully running LVS with TUN with servers in different networks and
> different countries.
> Everything is great since I can balance my load and keep all sites up all
> the time and at the same time I hide my real servers ips so nobody attack
> them. Thats great.
>
> My question is: I'm successfully running LVS on http, ftp, dns and nearly
> everything. Now when I tried to do the same to smpt protocol, I got a
> surprise. On the same server I have LVS with TUN running just fine for both
> http and dns, and I do the same for smtp (port 25), my real server ip
> appears on all messages, revealing the real server ip, so this is a
> potential brench for an attacker.
I assume that you mean that the RIP appears in the recieved
lines of messages sent by your smtp server.
This is a bit hard to get around as that like is put
there by machines that recieve the message. So they will
put in whatever address the message was recieved from.
Alternatively, if you are talking of something tha is added
by your mail server, then just reconfigure/hack the MTA.
--
Horms
|
