This is the information provided by arin for the given IP address. If you
can provide me the full header, I can possibly provide a way of finding out
who is doing it.
Qwest Cybercenters QWEST-CYBERCENTER-2 (NET-66-77-0-0-1)
66.77.0.0 - 66.77.255.255
NetObjective QWEST-CEC-NETOBJ (NET-66-77-28-192-1)
66.77.28.192 - 66.77.28.255
http://www.covenantdata.com ...Where data becomes information!
Robert Williams
Programmer / Web Developer / Network Administrator
Covenant Data Systems, Inc.
http://www.covenantdata.com
rwilliams@xxxxxxxxxxxxxxxx
-----Original Message-----
From: redhat-list-bounces@xxxxxxxxxx [mailto:redhat-list-bounces@xxxxxxxxxx]
On Behalf Of Jessica Zhu
Sent: Tuesday, August 23, 2005 11:05 AM
To: General Red Hat Linux discussion list
Subject: Mail Attack
Hi,
It looks like we are experiencing the mail attack now.
In our maillog, we have a lot of User Unknown message like the following.
Aug 23 11:52:25 s1 sendmail[2110]: j7NFqPL02110:
<Oscard@xxxxxxxxxxxxx>... User unknown
Aug 23 11:52:25 s1 sendmail[2110]: j7NFqPL02110: from=<>,
size=17601, class=0, nrcpts=0, proto=ESMTP, daemon=MTA,
relay=mail.vis-inc.net [66.77.28.202]
It looks like that all the from is <>, does anyone have the way to fight
against it.
Jessica
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
