On Tue, 20 Aug 2002, Bob Crandell wrote: > I have a client with a problem similar to this but we think he is being spoofed. > How does one stop this? He isn't running an MTA.
address spoofing is almost impossible to stop without tracking down the offender. if you want to send me (off-list) a copy of the email with full headers, I can track down where the mail entered the system, but it would then be up to the offender's ISP to shut them down... > > Larry Price ([EMAIL PROTECTED]) wrote*: > > > >> From: Tom Woods <[EMAIL PROTECTED]> > >> Date: Mon, 19 Aug 2002 12:14:54 -0700 (PDT) > >> To: [EMAIL PROTECTED] > >> Subject: spamming > >> > >> > >> ** This message was sent from the EUGLUG message board. Since ** > >> ** the person who submitted this question may not be on the ** > >> ** mailing list, please reply directly or on the message board: ** > >> ** http://www.euglug.org/board.phtml?id=232 ** > >> > >> my server is being used to spam. What can I do to stop this from > >> happening? I am fairly new to linux. Thanks for the help > > > >If your mail server is set up as an open relay (so that anyone can connect > >to it and send mail) you need to close this fast; take the machine in > >question off the network before reconfiguring it. > > > >Now; we'll need to know what MTA you are using as there are some fairly > >idiosyncratic mail configuration formats out there. > >likely ones would be sendmail,qmail,exim,postfix, etc. > > > > > > > > > > > -- > Bob Crandell > Assured Computing > When you need to be sure. > Voice 541-689-9159 > FAX 240-371-7237 > [EMAIL PROTECTED] > www.assuredcomp.com > Eugene, Or. 97402 > -- http://www.efn.org/~laprice ( Community, Cooperation, Consensus http://www.opn.org ( Openness to serendipity, make mistakes http://www.efn.org/~laprice/poems ( but learn from them.(carpe fructus ludi)
