ok su-3.2# tcpdump -nnAvvvw webmail.west.cox.net 'dst host 68.6.19.1 and (dst port 80 or 443)' tcpdump: listening on bce0, link-type EN10MB (Ethernet), capture size 96 bytes Got 0
let's see what I capture... On Mon, Aug 15, 2011 at 6:19 PM, Paul Schmehl <[email protected]> wrote: > --On August 15, 2011 2:04:27 PM -0400 alexus <[email protected]> wrote: > >> I personally leaning towards that these headers are being modified and >> that there is no spam leaving my box (I may be wrong of couse) >> >> here is what I did to come up with that thought.... >> >> I sent myself an email >> > > The tcpdump command that Chuck gave you is all you need. *If* all traffic > exits your network through your box, you will see anything going to port 25 > *anywhere*. That should tell you quickly what the problem is, if there is > one. > > -- > Paul Schmehl, Senior Infosec Analyst > As if it wasn't already obvious, my opinions > are my own and not those of my employer. > ******************************************* > "It is as useless to argue with those who have > renounced the use of reason as to administer > medication to the dead." Thomas Jefferson > "There are some ideas so wrong that only a very > intelligent person could believe in them." George Orwell > > -- http://alexus.org/ _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[email protected]"
