It's a virus (my AV calls it Worm.Gibe.F). I bet most of the list gets these occasionally. Some hapless windows user got infected and has you in their address book (perhaps through the outlook auto-add-addresses-to-addressbook-function applied to something you posted once on a public list??)
Install Clamav from ports and set it up to interface with postfix (I use it with sendmail milter but should be similar -- check clamav site for details). Don't sweat it, man -- life as usual in the wild-and-woolly... EB On Tue, 17 Feb 2004 19:29:03 -0600 (CST) [EMAIL PROTECTED] wrote: > I've fairly recently setup a mail server to: > > 1) learn about email and server configurations and all that goes along > with administrating it. > > 2) And being able to recieve loads of email from freebsd-questions > without fear of restriction on any other account (i.e. loss of email > that I want to save). > > Anyhow, within the month that I've had my server running I've been > recieving numerous emails that are obviously malicious to Windows > users(i.e. contain an attachment with some random-letters.exe and > nonsense about a patch). In short my concern is not that me or my wife > will run this, sense we don't use Windows, but whether these emails > are just spam or if it is my fault. > > If said emails are just spam, fine. Not to say that I like spam but it > gives me a reason to learn how to setup a spam filter and/or tarpit. > The reason I worry that it's not just spam is that there are only 2 > accounts, mine and my wifes, and she doesn't use her's except to email > me and I've only used mine to setup freebsd-questions and email her. > So why would I be getting spam? So then I think maybe it's my fault. > > What I mean by my fault is, is my machine being used to relay spam and > then I am getting bounces from the poor people recieve this crap? I > really would hate for this to be the case. Even if said emails are not > my fault how do I assure that I am not relaying spam unbeknown to me? > > This is a sample header from one such email. Now I'm not too sure how > to take this. > > Return-Path: <[EMAIL PROTECTED]> > Received: from mail.themango.org ([unix socket]) > by mail.themango.org (Cyrus v2.2.3) with LMTP; Tue, 17 Feb 2004 > 16:06:23 -0600 > X-Sieve: CMU Sieve 2.2 > Received: from centennialrd.net (unknown [18.104.22.168]) > by themango.org (Postfix) with ESMTP id B2194450F2 > for <[EMAIL PROTECTED]>; Tue, 17 Feb 2004 16:06:21 -0600 (CST) > Received: from qexstrg (jp [22.214.171.124]) > by centennialrd.net (8.12.10/8.12.10) with SMTP id > i1HLwZHp022746; Tue, 17 Feb 2004 17:58:36 -0400 > Date: Tue, 17 Feb 2004 17:58:35 -0400 > Message-Id: <[EMAIL PROTECTED]> > From: "Technical Bulletin" <[EMAIL PROTECTED]> > To: "MS User" <[EMAIL PROTECTED]> > SUBJECT: Newest Microsoft Patch > Mime-Version: 1.0 > Content-Type: multipart/mixed; boundary="bicnhrvs" > > My configuration is FreeBSD 5.2.1, Postfix + Cyrus > > Thanks for any help, > > Luke > _______________________________________________ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" _______________________________________________ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"