Here is more info for you guys to peruse in trying to help me figure
out why we are an open relay and how to fix it. Here is a clipping
from my log file on the blacklisted server showing the traffic
ordb.org sent in their testing. It looks like they were able to get
our backup mail server the one they blacklisted to forward a message
to our primary server which then sent them their relayed message.
From looking at this myself it looks like SIMS actually relayed
several of their messages How did this happen and how do I prevent
it and get off their blacklist?
Thanks,
Paul Didzerekis
22:15:40 3 SMTP-004(localhost.localdomain) Failed to verify. Real
address is [62.242.234.104:53644]
22:15:40 3 SMTP-003(localhost.localdomain) Failed to verify. Real
address is [62.242.234.104:53645]
22:15:41 3 SMTP-007(localhost.localdomain) Failed to verify. Real
address is [194.239.84.202:42351]
22:15:41 3 SMTP-006(localhost.localdomain) Failed to verify. Real
address is [194.239.84.202:42350]
22:15:41 1 SMTP-003([62.242.234.104]) SPAM? Recipient
'<[EMAIL PROTECTED]>' rejected: relaying to [62.243.72.19] is
not allowed
22:15:42 1 SMTP-007([194.239.84.202]) SPAM? Recipient
'<marvin%marvin.ordb.org@[63.95.200.2]>' rejected: relaying to
[62.242.0.190] is not allowed
22:15:42 3 SMTP-008(localhost.localdomain) Failed to verify. Real
address is [194.239.84.202:42355]
22:15:42 2 SMTP-006([194.239.84.202]) {S.0000072418} received, 1037 bytes
22:15:42 2 SYSTEM [S.0000072418] S.0000072418 1+0 From:[EMAIL PROTECTED]
22:15:43 3 SYSTEM The current date is Tuesday, December 17, 2002
22:15:43 2 SMTP-004([62.242.234.104]) {S.0000072415} received, 1044 bytes
22:15:43 2 SYSTEM [S.0000072415] S.0000072415 1+0 From:spamtest@[63.95.200.2]
22:15:43 1 SYSTEM(SMTP) [S.0000072418] failed on
(3-rivers.com)"[EMAIL PROTECTED]". Error Code=-15004
22:15:43 2 SYSTEM [S.0000072420]
<[EMAIL PROTECTED]> 1+0 From:NULL@NULL
22:15:43 1 SMTP-012(3-rivers.com) 'From' rejected, got 572
<spamtest@[63.95.200.2]> IP-address names are not accepted\r
22:15:43 1 SMTP [S.0000072415] rejected by 3-rivers.com. Error
Code=-15005:572 <spamtest@[63.95.200.2]> IP-address names are not
accepted\r
22:15:43 1 SYSTEM(SMTP) [S.0000072415] failed on
(3-rivers.com)marvin%marvin.ordb.org. Error Code=-15005
22:15:44 2 SYSTEM [S.0000072421]
<[EMAIL PROTECTED]> 0+1 From:NULL@NULL
22:15:44 1 SYSTEM(POP) [S.0000072421] failed on (spamtest). Error Code=-17756
22:15:44 0 SYSTEM Return Receipt failed: headers are too long
22:15:46 3 SMTP-005(orthanc.spoon.adsl.dk) Failed to verify. Real
address is [217.157.163.205:22085]
22:15:47 1 SMTP-005([217.157.163.205]) SPAM? Recipient
'<"marvin%marvin.ordb.org">' rejected: user unknown
22:15:50 2 SMTP-013(ordb.org) [S.0000072420] sent, 1357 bytes
22:15:50 2 SYSTEM(SMTP) [S.0000072420] sent to (ordb.org)bitbucket
22:15:50 2 SYSTEM [S.0000072420] deleted
22:15:57 3 SMTP-009(localhost.localdomain) Failed to verify. Real
address is [62.242.234.104:53593]
22:15:57 3 SMTP-010(localhost.localdomain) Failed to verify. Real
address is [212.242.88.3:4141]
22:15:58 1 SMTP-009([62.242.234.104]) SPAM? Recipient
'<[EMAIL PROTECTED]@[63.95.200.2]>' rejected: relaying to
[62.243.72.19] is not allowed
22:15:58 1 SMTP-010([212.242.88.3]) SPAM? Recipient
'<[EMAIL PROTECTED]>' rejected: relaying to [62.242.0.190] is
not allowed
22:16:08 3 SMTP-011(localhost.localdomain) Failed to verify. Real
address is [62.242.234.104:53583]
22:16:09 1 SMTP-011([62.242.234.104]) SPAM? Recipient
'<[EMAIL PROTECTED]>' rejected: relaying to [62.243.72.19] is
not allowed
22:16:27 3 SMTP-015(localhost.localdomain) Failed to verify. Real
address is [212.242.88.3:4214]
22:16:27 3 SMTP-014(localhost.localdomain) Failed to verify. Real
address is [212.242.88.3:4211]
22:16:28 1 SMTP-014([212.242.88.3]) SPAM? Recipient
'<[EMAIL PROTECTED]@[63.95.200.2]>' rejected: relaying to
[62.242.0.190] is not allowed
22:16:28 2 SMTP-015([212.242.88.3]) {S.0000072427} received, 1030 bytes
22:16:28 2 SYSTEM [S.0000072427] S.0000072427 1+0 From:[EMAIL PROTECTED]
22:16:29 2 SMTP-028(3-rivers.com) [S.0000072427] sent, 916 bytes
22:16:29 2 SYSTEM(SMTP) [S.0000072427] sent to
(3-rivers.com)marvin%marvin.ordb.org
22:16:29 2 SYSTEM [S.0000072427] deleted
22:16:41 3 SMTP-016(localhost.localdomain) Failed to verify. Real
address is [212.242.88.2:2379]
22:16:42 3 SMTP-017(localhost.localdomain) Failed to verify. Real
address is [212.242.88.2:2386]
22:16:42 1 SMTP-016([212.242.88.2]) SPAM? Recipient
'<marvin.ordb.org!marvin@[63.95.200.2]>' rejected: relaying to
[62.243.72.19] is not allowed
22:16:42 3 SMTP-020(localhost.localdomain) Failed to verify. Real
address is [212.242.88.2:2388]
22:16:42 3 SMTP-019(localhost.localdomain) Failed to verify. Real
address is [62.79.38.252:57496]
22:16:42 3 SMTP-021(localhost.localdomain) Failed to verify. Real
address is [212.242.88.2:2389]
22:16:42 3 SMTP-018(localhost.localdomain) Failed to verify. Real
address is [62.79.38.252:57495]
22:16:42 3 SMTP-022(localhost.localdomain) Failed to verify. Real
address is [62.79.38.252:57498]
22:16:43 1 SMTP-020([212.242.88.2]) SPAM? Recipient
'<marvin.ordb.org!marvin@[63.95.200.2]>' rejected: relaying to
[62.242.0.190] is not allowed
22:16:43 1 SMTP-018([62.79.38.252]) SPAM? Recipient
'<@lists.3-rivers.com:[EMAIL PROTECTED]>' rejected: relaying to
[62.243.72.19] is not allowed
22:16:43 1 SMTP-021([212.242.88.2]) SPAM? Recipient
'<"[EMAIL PROTECTED]@[63.95.200.2]">' rejected: user unknown
22:16:43 1 SMTP-019([62.79.38.252]) SPAM? Recipient
'<"[EMAIL PROTECTED]"@lists.3-rivers.com>' rejected: user unknown
22:16:43 1 SMTP-022([62.79.38.252]) SPAM? Recipient
'<@lists.3-rivers.com:[EMAIL PROTECTED]>' rejected: relaying to
[62.242.0.190] is not allowed
22:16:43 2 SMTP-017([212.242.88.2]) {S.0000072430} received, 1036 bytes
22:16:44 2 SYSTEM [S.0000072430] S.0000072430 1+0 From:[EMAIL PROTECTED]
22:16:44 3 SMTP-023(localhost.localdomain) Failed to verify. Real
address is [194.239.84.202:42641]
22:16:44 3 SMTP-024(localhost.localdomain) Failed to verify. Real
address is [62.79.38.252:57501]
22:16:44 1 SMTP-023([194.239.84.202]) SPAM? Recipient
'<[EMAIL PROTECTED]>' rejected: relaying to [62.243.72.19] is
not allowed
22:16:44 2 SMTP-037(3-rivers.com) [S.0000072430] sent, 919 bytes
22:16:44 3 SMTP-025(localhost.localdomain) Failed to verify. Real
address is [212.242.88.2:2407]
22:16:45 2 SYSTEM(SMTP) [S.0000072430] sent to
(3-rivers.com)marvin%marvin.ordb.org
22:16:45 2 SYSTEM [S.0000072430] deleted
22:16:45 1 SMTP-025([212.242.88.2]) Return-Path
'<spamtest@localhost>' rejected: 'localhost' does not exist
22:16:45 1 SMTP-024([62.79.38.252]) SPAM? Recipient
'<marvin%marvin.ordb.org@[63.95.200.2]>' rejected: relaying to
[62.242.0.190] is not allowed
22:16:45 3 SMTP-026(localhost.localdomain) Failed to verify. Real
address is [62.79.38.252:57503]
22:16:47 3 SMTP-027(localhost.localdomain) Failed to verify. Real
address is [62.79.38.252:57505]
22:16:47 1 SMTP-026([62.79.38.252]) SPAM? Recipient
'<"[EMAIL PROTECTED]@3-rivers.com">' rejected: user unknown
22:16:48 1 SMTP-027([62.79.38.252]) SPAM? Recipient
'<"[EMAIL PROTECTED]@3-rivers.com">' rejected: user unknown
22:17:01 3 SMTP-029(localhost.localdomain) Failed to verify. Real
address is [62.79.38.252:57520]
22:17:02 1 SMTP-029([62.79.38.252]) SPAM? Recipient
'<"[EMAIL PROTECTED]@lists.3-rivers.com">' rejected: user unknown
22:17:03 3 SMTP-030(localhost.localdomain) Failed to verify. Real
address is [62.242.0.190:4920]
22:17:03 1 SMTP-030([62.242.0.190]) SPAM? Recipient
'<"[EMAIL PROTECTED]@lists.3-rivers.com">' rejected: user unknown
22:17:04 3 SMTP-031(localhost.localdomain) Failed to verify. Real
address is [62.242.0.190:4923]
22:17:04 3 SMTP-032(localhost.localdomain) Failed to verify. Real
address is [62.242.0.190:4926]
22:17:04 1 SMTP-031([62.242.0.190]) SPAM? Recipient
'<@[63.95.200.2]:[EMAIL PROTECTED]>' rejected: relaying to
[62.243.72.19] is not allowed
22:17:05 1 SMTP-032([62.242.0.190]) SPAM? Recipient
'<[EMAIL PROTECTED]>' rejected: relaying to
[62.242.0.190] is not allowed
22:17:05 3 SMTP-033(localhost.localdomain) Failed to verify. Real
address is [62.242.0.190:4932]
22:17:06 1 SMTP-033([62.242.0.190]) SPAM? Recipient
'<[EMAIL PROTECTED]>' rejected: relaying to [62.243.72.19] is
not allowed
22:17:06 3 SMTP-034(localhost.localdomain) Failed to verify. Real
address is [62.242.0.190:4934]
22:17:07 1 SMTP-034([62.242.0.190]) SPAM? Recipient
'<marvin.ordb.org!marvin>' rejected: relaying to [62.242.0.190] is
not allowed
22:17:08 3 SMTP-035(localhost.localdomain) Failed to verify. Real
address is [62.242.0.190:4939]
22:17:09 1 SMTP-035([62.242.0.190]) Return-Path '<nobody>' rejected:
no domain name
22:17:09 3 SMTP-036(localhost.localdomain) Failed to verify. Real
address is [62.79.38.252:57530]
22:17:10 1 SMTP-036([62.79.38.252]) SPAM? Recipient
'<[EMAIL PROTECTED]>' rejected: relaying to [62.243.72.19] is
not allowed
#############################################################
This message is sent to you because you are subscribed to
the mailing list <[EMAIL PROTECTED]>.
To unsubscribe, E-mail to: <[EMAIL PROTECTED]>
To switch to the DIGEST mode, E-mail to <[EMAIL PROTECTED]>
To switch to the INDEX mode, E-mail to <[EMAIL PROTECTED]>
Send administrative queries to <[EMAIL PROTECTED]>
- We got added to ORDB.org blacklist. WHY? Paul Didzerekis
- We got added to ORDB.org blacklist. WHY? Paul Didzerekis
- Re: We got added to ORDB.org blacklist. WHY? Bill Cole
- Re: We got added to ORDB.org blacklist. WHY? Paul Didzerekis
- Re: We got added to ORDB.org blacklist. WHY? Paul Didzerekis
- Re: We got added to ORDB.org blacklist. WHY? Global Homes Webmaster
- Re: We got added to ORDB.org blacklist. WHY? Paul Didzerekis
- Re: We got added to ORDB.org blacklist. WHY? Larry Stone
- Re: We got added to ORDB.org blacklist. WHY? Global Homes Webmaster
- Re: We got added to ORDB.org blacklist. WHY? Bill Cole
- Re: We got added to ORDB.org blacklist. WHY? Paul Didzerekis
