> i didn't mean 'bothering me' in the sense that i wish they > would go away. > i'm just concerned when i get strange messages that i don't > understand. like > "g68JKQpm001168:....". to a newbie eye, this looks like an > attempted hack.
it's the job id of the sendmail job that went wrong. check /var/spool/mqueue when mail is in the queue to find out what they are used to. > i guess what i'm saying here is that there's a need for > something out there > that will plainly explain if i should worry about the message > is get... > kinda like sshd's "[cytpyic message] - don't panic". does > such software > exist? or at least a simple document that can get newbie > sysadmins like me > on the right track? not that I'm aware of (I have to admit that would be nice). Even the "normal" documentation sometimes lack the information you are looking for (the -bs is something I didn't find at sendmail.org). So the only way seems to be to consult the docs of the application that causes these log entries (seems reasonable, logwatch merely collects these messages - mostly just because of some token not because of context) and the security mailinglists that provides current hack attacks to check for patterns. Sorry for the bad news. MfG Andreas _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
