On 4/4/2017 9:14 PM, John Hardin wrote:
At the most basic you'd filter for the port spamd is listening on:
Hmm, thinking about my firewall question in context with this issue of
how to use tcpdump. I think we already have this info with this line:
Apr 2 10:31:26 oss2 spamfilter: Sat Oct 15 16:24:54 2016 [2758] info: spamd:
connection from ip6-localhost [::1]:56238 to port 783, fd 5
So a grep -v should give the same info which from a spotcheck of the log
snippet isn't going to identify another host.
regards,
KAM
