chasquid

lordwelch/chasquid

Fork 0

Commit Graph

Author	SHA1	Message	Date
Alberto Bertogli	85305f4bd9	smtpsrv: Close the connection after 3 errors (lowering from 10) Today, we close the connection after 10 errors. While this is fine for normal use, it is unnecessarily large. Lowering it to 3 helps with defense-in-depth for cross-protocol attacks (e.g. https://alpaca-attack.com/), while still being large enough for useful troubleshooting and normal operation. As part of this change, we also remove the AUTH-specific failures limit, because they're covered by the connection limit.	2021-06-11 10:34:20 +01:00
Alberto Bertogli	e7309a2c7b	smtpsrv: Send enhanced status codes SMTP supports enhanced status codes, which help with internationalization and accessibility in cases where protocol errors make their way to the users. This patch makes chasquid include these extended status codes in the corresponding replies, as well as advertising support in the EHLO reply. Main references: - RFC 3463 (https://tools.ietf.org/html/rfc3463) - RFC 2034 (https://tools.ietf.org/html/rfc2034) - SMTP Enhanced Status Codes Registry (https://www.iana.org/assignments/smtp-enhanced-status-codes/smtp-enhanced-status-codes.xhtml)	2019-01-10 15:44:25 +00:00
Alberto Bertogli	61d2961ee9	test: Add a new integration test with minor dialogs This patch adds a new integration test, which executes various small dialogs, to cover corner cases that are not well covered (according to our coverage report). For example, "EHLO" without domain, or invalid DATA. While we could do them via Go tests, this way is more realistic, and the tests are easier to write.	2018-03-02 19:37:37 +00:00

Author

SHA1

Message

Date

Alberto Bertogli

85305f4bd9

smtpsrv: Close the connection after 3 errors (lowering from 10)

Today, we close the connection after 10 errors. While this is fine for
normal use, it is unnecessarily large.

Lowering it to 3 helps with defense-in-depth for cross-protocol attacks
(e.g. https://alpaca-attack.com/), while still being large enough for
useful troubleshooting and normal operation.

As part of this change, we also remove the AUTH-specific failures limit,
because they're covered by the connection limit.

2021-06-11 10:34:20 +01:00

Alberto Bertogli

e7309a2c7b

smtpsrv: Send enhanced status codes

SMTP supports enhanced status codes, which help with
internationalization and accessibility in cases where protocol errors
make their way to the users.

This patch makes chasquid include these extended status codes in the
corresponding replies, as well as advertising support in the EHLO reply.

Main references:
- RFC 3463 (https://tools.ietf.org/html/rfc3463)
- RFC 2034 (https://tools.ietf.org/html/rfc2034)
- SMTP Enhanced Status Codes Registry
  (https://www.iana.org/assignments/smtp-enhanced-status-codes/smtp-enhanced-status-codes.xhtml)

2019-01-10 15:44:25 +00:00

Alberto Bertogli

61d2961ee9

test: Add a new integration test with minor dialogs

This patch adds a new integration test, which executes various small
dialogs, to cover corner cases that are not well covered (according to
our coverage report).

For example, "EHLO" without domain, or invalid DATA.

While we could do them via Go tests, this way is more realistic, and the
tests are easier to write.

2018-03-02 19:37:37 +00:00

3 Commits