David Banning wrote:
>> That would seem to suggest that the spam is being sent using an authorized
>> account, however, is it possible that a host inside your network is
>> sending the spam?
>
> Thanks for that test Paul. I do believe that it could have been a virus
> infected windows box. I am
From: "John Levine" <[EMAIL PROTECTED]>
>I am wondering about the possibility of someone using a working login
and password to send spam through my server. So here is my question;
That's depressingly common. Look for abandoned or unused accounts
like guest/guest.
[EMAIL PROTECTED] - that c
On Saturday 13 January 2007 12:08, David Banning wrote:
> I am still pouring over logs to check how my server has been spamming.
>
> I am wondering about the possibility of someone using a working login and
> password to send spam through my server. So here is my question;
>
> I look at my maillog
> That would seem to suggest that the spam is being sent using an authorized
> account, however, is it possible that a host inside your network is
> sending the spam?
Thanks for that test Paul. I do believe that it could have been a virus
infected windows box. I am not convinced now. I -do- know
--On January 13, 2007 6:34:17 PM -0500 David Banning <[EMAIL PROTECTED]>
wrote:
That would seem to suggest that the spam is being sent using an
authorized account, however, is it possible that a host inside your
network is sending the spam?
Thanks for that test Paul. I do believe that it co
>I am wondering about the possibility of someone using a working login
>and password to send spam through my server. So here is my question;
That's depressingly common. Look for abandoned or unused accounts
like guest/guest.
R's,
John
___
freebsd-quest
--On January 13, 2007 1:08:17 PM -0500 David Banning
<[EMAIL PROTECTED]> wrote:
I am still pouring over logs to check how my server has been spamming.
I am wondering about the possibility of someone using a working login
and password to send spam through my server. So here is my question;
I
I am still pouring over logs to check how my server has been spamming.
I am wondering about the possibility of someone using a working login and
password
to send spam through my server. So here is my question;
I look at my maillog and see the following spam;
maillog.0:Jan 11 02:14:17 3s1 sm-mt