Toriss

Toriss is an IIS plug-in that makes the SMTP service immune to Reverse NDR Attacks (a.k.a. Backscatter Spam). Instead of bouncing emails that are sent to invalid users, Toriss will reject the email as soon as the RCPT command is received. Microsoft left this important security feature out of IIS to motivate people to buy its $1500 ISA Server. However, this foolishly allows the server to be used to send spam by way of the Reverse NDR Attack. By sending spam to invalid users, the SMTP service will send a bounce-back to the forged From: header with the spam attached. As a result, \Inetpub\Mailroot\Queue fills up with thousands of undeliverable bounce-backs, slowing down the whole system and making the SMTP service unresponsive. Toriss solves this problem completely. Toriss also has the ability to reject unauthenticated connections from dynamic IP addresses. This technique is used by many large domains such as Hotmail and AOL to reduce spam. When this feature is enabled, your mail server will only accept email from computers with a static IP address, or if a user name and password is provided.

Changes: Added the ability to reject unauthenticated connections from dynamic IP addresses.

Operating system: Win2000,Win7 x32,Win7 x64,WinServer,WinVista,WinVista x64,WinXP

Program URL: http://www.gammadyne.com/toriss.htm

Toriss is commercial software and may not be redistributed without Gammadyne's written permission.

END-USER LICENSE AGREEMENT IMPORTANT - PLEASE READ CAREFULLY: This End-User License Agreement ("EULA") for the software you are installing ("Software") is a legal agreement between you ("Licensee") (either an individual or a single entity) and Gammadyne Corporation ("Licensor"). By installing, copying, or otherwise using the Software you agree to be bound by the terms of this EULA.

Read more