Hi there, On Fri, 3 Apr 2015, Martin Cigorraga wrote:
> Yesterday I received a call from the security staff at my workplace > regarding an email the network administrators had received delivered > from my home IP and sent to root@localhost ... > After thinking about this issue, which left me totally lost ... Hmmm. > What I can't still make out is how the email got delivered ... Hmmm. > Sorry to tell you this but I have to raise an eyebrow here ... Hmmm. > how unprofessional this made me look ... Hmmm. > then explaining the whole issue to them ... Hmmm. > Before hitting the bugtracker of my distro to raise awareness of > this issue I would like to know your opinion guys ... Don't do that. > specially because I'm not sure if the script responsible of this > issue is ... First you say you can't make out how this rogue email got delivered, then you say you've explained "the whole issue to them". You can't have it both ways. If you haven't explained it to yourself you can't have explained it to anyone else. Nothing in your message suggests to me that the problem you're facing is in any way attributable to rkhunter. You might well see the same issue with logrotate, or anything that runs from a cron job. It does rather look as if you're trying to blame others for problems when the problem is your own lack of understanding. That's unfair. If there are security problems in your VPN/mail setup they're down to you, not to any package which might wish to use the services provided by those systems. A VPN isn't a magic security pill, in fact it can be a bit of a security nightmare. You need to know exactly what it does for the systems in which it will operate, and in particular what impact it has on the security policies of the organizations involved. I wonder if, before this incident, you had even made the security staff at your workplace aware of your VPN. You asked for opinion. Above is mine. There's no need to have an MTA installed in a system for that system to be able to send mail. The vast majority of systems on the planet which send mail don't have an MTA installed. That isn't an opinion, they're called Windows boxes. :) Incidentally I have no connection with the development of rkhunter. -- 73, Ged. ------------------------------------------------------------------------------ Dive into the World of Parallel Programming The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net/ _______________________________________________ Rkhunter-users mailing list Rkhunter-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/rkhunter-users
