Hi there folks, Someone has been using a mod_proxy to send spam off my machine. The way I'm reading this is that the server is now rejecting their attempts with a 502 error:
66.166.184.74 - - [24/Feb/2004:08:46:19 +1100] "POST http://202.154.92.226:25/ HTTP/1.1" 502 421 "-" "-" 66.166.184.74 - - [24/Feb/2004:08:49:28 +1100] "QUIT" 501 405 "-" "-" 66.166.184.74 - - [24/Feb/2004:08:46:32 +1100] "POST http://202.154.83.58:25/ HTTP/1.1" 502 421 "-" "-" BTW if anyone can suggest how I stop this d*ckh**d from sending this dros I'd appreciate it. I am not prepared to hack their machine but am prepared to be told how to get them legitimately closed down. FYI I installed 9.2 Mandrake with apache 2 and postfix. The mod_proxy bit was totally commented out in the conf so I'm mystified as to why it was letting this happen at all. Anyway after uncommenting it and doing a DENY ALL it seems to be rejecting everything. Comments most appreciated as this is pissing me off. ATB Stu -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
