>My logs are filled with over 10,000 emails with bad address to
>@intertrek.net I have over 200 to [EMAIL PROTECTED] But why are the
>emails that are sent to the same bad address come from such differnet IP
>(some in florida, UK etc) Where they all forged ?
The IPs sending could be candidates for permanent residence to
mta_client_bw.map
Here's a command to find them, sorted by IP:
egrep -i "reject:.*to=<[EMAIL PROTECTED]" /var/log/maillog | awk
'{print $(10)}' | sort -f | uniq -ic | sort -t[ -k2 | less
