Bonjour
Je trouve le résultat de cette requette assez inquiétante! On veut
pirater mon serveur de mail... Que puis-je faire fasse à ça?
Les essais de pirates viennet de eastlink.ca, verizon.com.
$ cat /var/log/mail/info | grep smtp
Nov 9 19:52:15 troumad postfix/smtpd[9021]: connect from
pool-151-196-168-186.balt.east.verizon.net[151.196.168.186]
Nov 9 19:52:15 troumad postfix/smtpd[9021]: BB5A8502D4:
client=pool-151-196-168-186.balt.east.verizon.net[151.196.168.186]
Nov 9 19:52:16 troumad postfix/smtpd[9021]: BB5A8502D4: reject: RCPT
from pool-151-196-168-186.balt.east.verizon.net[151.196.168.186]: 554
[EMAIL PROTECTED]: Relay access denied;
from=[EMAIL PROTECTED] to=[EMAIL PROTECTED] proto=SMTP
helo=ssy-gw-05-213245103018.chello.fr
Nov 9 19:52:17 troumad postfix/smtpd[9021]: lost connection after RCPT
from pool-151-196-168-186.balt.east.verizon.net[151.196.168.186]
Nov 9 19:52:17 troumad postfix/smtpd[9021]: disconnect from
pool-151-196-168-186.balt.east.verizon.net[151.196.168.186]
Nov 9 23:55:21 troumad postfix/smtpd[12690]: connect from
u128n85.hfx.eastlink.ca[24.222.128.85]
Nov 9 23:55:21 troumad postfix/smtpd[12690]: C4231502D6:
client=u128n85.hfx.eastlink.ca[24.222.128.85]
Nov 9 23:55:22 troumad postfix/smtpd[12690]: C4231502D6: reject: RCPT
from u128n85.hfx.eastlink.ca[24.222.128.85]: 554
[EMAIL PROTECTED]: Relay access denied;
from=[EMAIL PROTECTED] to=[EMAIL PROTECTED]
proto=SMTP helo=bellsouth.net
Nov 9 23:55:23 troumad postfix/smtpd[12690]: C4231502D6: reject: RCPT
from u128n85.hfx.eastlink.ca[24.222.128.85]: 554 [EMAIL PROTECTED]: Relay
access denied; from=[EMAIL PROTECTED] to=[EMAIL PROTECTED]
proto=SMTP helo=bellsouth.net
Nov 9 23:55:24 troumad postfix/smtpd[12690]: disconnect from
u128n85.hfx.eastlink.ca[24.222.128.85]
Nov 10 01:00:09 troumad postfix/smtpd[13592]: connect from
u128n85.hfx.eastlink.ca[24.222.128.85]
Nov 10 01:00:09 troumad postfix/smtpd[13592]: CBB2D502D6:
client=u128n85.hfx.eastlink.ca[24.222.128.85]
Nov 10 01:00:10 troumad postfix/smtpd[13592]: CBB2D502D6: reject: RCPT
from u128n85.hfx.eastlink.ca[24.222.128.85]: 554
[EMAIL PROTECTED]: Relay access denied;
from=[EMAIL PROTECTED] to=[EMAIL PROTECTED]
proto=SMTP helo=bellsouth.net
Nov 10 01:00:11 troumad postfix/smtpd[13592]: CBB2D502D6: reject: RCPT
from u128n85.hfx.eastlink.ca[24.222.128.85]: 554 [EMAIL PROTECTED]:
Relay access denied; from=[EMAIL PROTECTED]
to=[EMAIL PROTECTED] proto=SMTP helo=bellsouth.net
Nov 10 01:00:12 troumad postfix/smtpd[13592]: disconnect from
u128n85.hfx.eastlink.ca[24.222.128.85]
Nov 10 04:01:46 troumad postfix/smtpd[16526]: connect from
windobe[192.168.1.10]
Nov 10 04:01:46 troumad postfix/smtpd[16526]: CA02C502D6:
client=windobe[192.168.1.10]
Nov 10 04:01:46 troumad postfix/smtpd[16526]: disconnect from
windobe[192.168.1.10]
Je fais remarquer que je n'ai maquillé aucune adresse.
--
Amicalement vOOotre Troumad Alias Bernard SIAUD
mon site : http://troumad.free.fr : ADD : maths WEB sectes.
Pour la liberté soutenez http://www.mandrakelinux.com/fr/ : Mandrake
Linux, http://www.eurolinux.org/index.fr.html
Je souhaite recevoir uniquement des documents avec des formats ouverts,
par exemple avec http://fr.openoffice.org
Vous souhaitez acquerir votre Pack ou des Services MandrakeSoft?
Rendez-vous sur http://www.mandrakestore.com;.
Foire Aux Questions de la liste : http://mdk.mondelinux.org