For about 48 hours I see an increase in attempts to unload spam to our clients. Many of the connects seem to be endless = they keep the sendmail process with almost no data open until I kill them after a while. This happens on several machines, sometimes looking a bit like a "wave" and many of the target email addresses are no longer on these machines but moved to another MX. It looks like there have been old MX records from half a year ago or so been activated. But the stuff comes from dialups all over the world, so it can't be some provider's nameserver handing out bogus info. It's not in any way near a DoS attack, but I'm curious. Anyone seeing similar mysterious spam waves?
Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com IE-Center: http://ie5.de & http://msie.winware.org
