RE: Mail Attack

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



This is the information provided by arin for the given IP address. If you
can provide me the full header, I can possibly provide a way of finding out
who is doing it.

Qwest Cybercenters QWEST-CYBERCENTER-2 (NET-66-77-0-0-1) 
                                  66.77.0.0 - 66.77.255.255
NetObjective QWEST-CEC-NETOBJ (NET-66-77-28-192-1) 
                                  66.77.28.192 - 66.77.28.255

http://www.covenantdata.com ...Where data becomes information!
 
Robert Williams
Programmer / Web Developer / Network Administrator
Covenant Data Systems, Inc.
http://www.covenantdata.com
rwilliams@xxxxxxxxxxxxxxxx  
 

-----Original Message-----
From: redhat-list-bounces@xxxxxxxxxx [mailto:redhat-list-bounces@xxxxxxxxxx]
On Behalf Of Jessica Zhu
Sent: Tuesday, August 23, 2005 11:05 AM
To: General Red Hat Linux discussion list
Subject: Mail Attack 

Hi,

It looks like we are experiencing the mail attack now.

In our maillog, we have a lot of User Unknown message like the following.

Aug 23 11:52:25  s1 sendmail[2110]: j7NFqPL02110:  
<Oscard@xxxxxxxxxxxxx>... User unknown
Aug 23 11:52:25 s1 sendmail[2110]: j7NFqPL02110: from=<>, 
size=17601, class=0, nrcpts=0, proto=ESMTP, daemon=MTA,  
relay=mail.vis-inc.net [66.77.28.202]

It looks like that all the from is <>, does anyone have the way to fight 
against it. 

Jessica

-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list



-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

[Index of Archives]     [CentOS]     [Kernel Development]     [PAM]     [Fedora Users]     [Red Hat Development]     [Big List of Linux Books]     [Linux Admin]     [Gimp]     [Asterisk PBX]     [Yosemite News]     [Red Hat Crash Utility]


  Powered by Linux