It's a virus (my AV calls it Worm.Gibe.F). I bet most of the list gets
these occasionally. Some hapless windows user got infected and has you
in their address book (perhaps through the outlook
auto-add-addresses-to-addressbook-function applied to something you
posted once on a public list??)

Install Clamav from ports and set it up to interface with postfix (I use
it with sendmail milter but should be similar -- check clamav site for

Don't sweat it, man -- life as usual in the wild-and-woolly...


On Tue, 17 Feb 2004 19:29:03 -0600 (CST)

> I've fairly recently setup a mail server to:
> 1) learn about email and server configurations and all that goes along
> with administrating it.
> 2) And being able to recieve loads of email from freebsd-questions
> without fear of restriction on any other account (i.e. loss of email
> that I want to save).
> Anyhow, within the month that I've had my server running I've been
> recieving numerous emails that are obviously malicious to Windows
> users(i.e. contain an attachment with some random-letters.exe and
> nonsense about a patch). In short my concern is not that me or my wife
> will run this, sense we don't use Windows, but whether these emails
> are just spam or if it is my fault.
> If said emails are just spam, fine. Not to say that I like spam but it
> gives me a reason to learn how to setup a spam filter and/or tarpit.
> The reason I worry that it's not just spam is that there are only 2
> accounts, mine and my wifes, and she doesn't use her's except to email
> me and I've only used mine to setup freebsd-questions and email her.
> So why would I be getting spam? So then I think maybe it's my fault.
> What I mean by my fault is, is my machine being used to relay spam and
> then I am getting bounces from the poor people recieve this crap? I
> really would hate for this to be the case. Even if said emails are not
> my fault how do I assure that I am not relaying spam unbeknown to me?
> This is a sample header from one such email. Now I'm not too sure how
> to take this.
> Return-Path: <[EMAIL PROTECTED]>
> Received: from ([unix socket])
>      by (Cyrus v2.2.3) with LMTP; Tue, 17 Feb 2004
> 16:06:23 -0600
> X-Sieve: CMU Sieve 2.2
> Received: from (unknown [])
>      by (Postfix) with ESMTP id B2194450F2
>      for <[EMAIL PROTECTED]>; Tue, 17 Feb 2004 16:06:21 -0600 (CST)
> Received: from qexstrg (jp [])
>      by (8.12.10/8.12.10) with SMTP id
>      i1HLwZHp022746; Tue, 17 Feb 2004 17:58:36 -0400
> Date: Tue, 17 Feb 2004 17:58:35 -0400
> Message-Id: <[EMAIL PROTECTED]>
> From: "Technical Bulletin" <[EMAIL PROTECTED]>
> SUBJECT: Newest Microsoft Patch
> Mime-Version: 1.0
> Content-Type: multipart/mixed; boundary="bicnhrvs"
> My configuration is FreeBSD 5.2.1, Postfix + Cyrus
> Thanks for any help,
> Luke
> _______________________________________________
> [EMAIL PROTECTED] mailing list
> To unsubscribe, send any mail to

[EMAIL PROTECTED] mailing list
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Reply via email to