Re: Unknown spammer
From: David (thunderbolt01_at_netscape.net)
Date: 05/29/03
- Next message: Stefan Mock: "Iptables Forwarding Problem"
- Previous message: Walter Cardwell: "Re: output chain in Iptables"
- In reply to: Kasper Dupont: "Re: Unknown spammer"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 29 May 2003 17:26:40 GMT
Kasper Dupont wrote:
> Keith wrote:
>
>> Any method to prevent spammer using 127.0.0.1? Is there any
>> security hole of my email server? Since some user always
>> receive these kind of messages and I can't find out the
>> source IP from the header of those messages.
>
> Some possible explanations would be an open proxy, or perhaps
> a broken script on a webserver. I have seen spammers connect
> to an open proxy and from there attempt to connect to a relay
> on the same computer or another computer on the same subnet.
> It could also be some broken firewall rules changing the
> source address.
Or if it is a M$ system like the one used to post the question,
it could be:
The latest Windows mass mailer worm could be used by spammers to
launch bulk mail blizzards from computers they don't own.
http://www.theregister.co.uk/content/56/30808.html
-- Confucius: He who play in root, eventually kill tree. Registered with The Linux Counter. http://counter.li.org/ Slackware 9.0 Kernel 2.4.20 i686 (GCC) 3.3 Uptime: 10 days, 9:33, 1 user, load average: 1.01, 1.10, 1.10
- Next message: Stefan Mock: "Iptables Forwarding Problem"
- Previous message: Walter Cardwell: "Re: output chain in Iptables"
- In reply to: Kasper Dupont: "Re: Unknown spammer"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
