Subj : Netmail in the insecure inbound
To   : Kai Richter
From : Tommi Koivula
Date : Sat Apr 24 2021 12:25:15


24 Apr 21 09:46, Kai Richter wrote to Alan Ianson:

 AI>> I wonder if it is possible for hpt to unpack those arcmail bundles
 AI>> and toss the packets within if they are netmail.

 KR> Yes, it is. Negotiate a password with the sending sysop.

It may be quite a job to negotiate a password with all sysops and points in the world. :D

No one should send netmail as arcmail, but there are systems that do it.

 KR> Insecure bundles/archives should not be unpacked because of a mailbomb
 KR> risk.

Fastecho has an option to allow unpacking insecure arcmail if the compression ratio is below xxx.

Anyway, those .sec files can be investigated and unpacked in a script outside hpt.

'Tommi

---
 * Origin: rbb.fidonet.fi (2:221/1)

.