On Sun, 17 Aug 2003, David wrote: > * Woody/postfix with nearly default settings and getting "bounce" return > emails from unknown accounts on foreign mail servers > > * It turned out that someone was forging one of my domains as a "from" > address, so the receiving mta simply bounced it back to me as "unknown > account". > > * At first look, it seemed that I was acting as a relay and that I had > been cracked. Scary stuff. > > * I used one of the anti-spam services to check if I was open relay and it > turns out that I'm not. > > * Problem has now gone away, presumably because the evil people are now > using someone elses domain in their fake headers.
Roger Clarke was interviewed on ABC radio last weekend about a similar thing that happened to his domain. Here is a two part thread discussing the problem as he encountered it a few weeks ago: http://mailman.anu.edu.au/pipermail/link/2003-July/051551.html http://mailman.anu.edu.au/pipermail/link/2003-August/051557.html cheers rickw --------------------------------------------- Rick Welykochy || Praxis Services Pty Limited "Every program attempts to expand until it can read mail. Those programs which cannot so expand are replaced by ones which can." -- Jamie Zawinski, the Law of Software Envelopment -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
