Re: Host attempting to log in constantly via POP3

From: Alan Connor (zzzzzz_at_xxx.yyy)
Date: 03/01/04

  • Next message: NeoSadist: "Re: Host attempting to log in constantly via POP3" 
    Date: Mon, 01 Mar 2004 01:28:20 GMT

    On Sun, 29 Feb 2004 17:15:15 -0600, Mark Hittinger <bugs@pu.net> wrote:
    >
    >
    > alanwbaker@yahoo.com (Alan Baker) writes:
    >>My logs show some computer attempting to log into my Linux server via
    >>POP3 every 5-10 seconds using the same userid. Apparently they do not
    >>have the password so the attempts always fail. There have been about
    >>100,000 attempts this month.
    >
    > Are you hosting a domain on that Linux server that may have belonged to
    > someone else awhile back? The owner of this PC might have set up their
    > PC to look for email on that domain when it belonged to the person before
    > you.
    >
    > Anyway instead of blocking it another idea is to put up a pop server and
    > an account that matches what the pest is trying to do. Put some mail in
    > there for them asking them to fix their configuration. You could hand them
    > one message a day for a few days and then firewall it off. It might be
    > too much work for one but I'd bet there are others.
    >
    > When you get a domain these days you have to be careful about where its
    > been. :-)
    >
    > Later
    >
    > Mark Hittinger
    > bugs@pu.net

    I gather you DO run a POPserver...

    So create an account for them and fill it with mail, but don't accept
    any OUTSIDE mail delivery.

    A thousand copies of this, each time it is emptied:

    From: you@you.net
    Subject: PLEASE QUIT!
    To: userid@pop.you.net

    Please stop trying to log into my pop server, you knucklehead!

    AC

  • Next message: NeoSadist: "Re: Host attempting to log in constantly via POP3"

    Relevant Pages

    • Re: Send only account?
      ... I have sendmail running on a Linux server. ... People in our office use Outlook to send emails thru the server. ... I would like to set up an account to be a send-only address. ... send mail from should be accept responses, even if all it does is pipe ...
      (comp.mail.sendmail)
    • Re: Cant Get Mail From Linux Server
      ... > account so I can access my mail from home. ... We run a LINUX server and the ... > know of any issues setting up an IMAP account to access ... (I use Cyrusoft Mulberry for my IMAP client, ...
      (microsoft.public.outlook)
    • Send only account?
      ... I have sendmail running on a Linux server. ... People in our office use Outlook to send emails thru the server. ... I would like to set up an account to be a send-only address. ... Listed the email address in the virtusers file as error:nouser ...
      (comp.mail.sendmail)
    • Re: Host attempting to log in constantly via POP3
      ... >>have the password so the attempts always fail. ... > Are you hosting a domain on that Linux server that may have belonged to ... So create an account for them and fill it with mail, ... Please stop trying to log into my pop server, ...
      (comp.security.misc)
    • Re: Host attempting to log in constantly via POP3
      ... >>have the password so the attempts always fail. ... > Are you hosting a domain on that Linux server that may have belonged to ... So create an account for them and fill it with mail, ... Please stop trying to log into my pop server, ...
      (comp.os.linux.security)