> Allow 8-bit Charakters
If this is disabled, any characters outside the basic US-ASCII set may cause problems: either the mail is rejected altogether, or the "problem" characters stripped away or changed.
Many email servers can recode an email that contains 8-bit characters so that it can pass through a link that disallows 8-bit characters - but this must be detected before the message is passed through the link, otherwise information is lost. This is why email servers that support 8-bit characters will usually announce that when responding to a connection attempt.
A system that allows 8-bit characters to pass through is also known as "8-bit clean", as it allows data with 8-bit characters to pass through as-is without extra conversion steps, providing a more efficient transfer.
I would recommend that you enable this option. Disabling it is necessary only if you have a legacy email system that cannot handle 8-bit characters.
> Allow source-routed Addresses
This would allow the sender to specify the route the message should take on its way to destination; i.e. "go from Point A to Point B via C, then D, then E".
This feature was originally designed to work around network problems, but these days it is not needed and few people would know how to use it legitimately. Furthermore, because of the junk email problem, any email administrator with a clue will set his/her mail server to not accept email from outside unless it is addressed to his/her users, so it would be very difficult to find useful routing points.
Source-routed addresses can be found at the IP protocol level too. The same rule applies: any source-routed traffic coming in from Internet is most likely intended to deceive you or your systems in some way, and should never be accepted.
Always disable this option in a firewall.
MK
MK
