From owner-freebsd-questions Thu Apr 27 3:48:28 2000 Delivered-To: freebsd-questions@freebsd.org Received: from smtp2.tbv.se (smtp2.tbv.se [193.15.92.33]) by hub.freebsd.org (Postfix) with ESMTP id 9B21C37B677 for ; Thu, 27 Apr 2000 03:48:23 -0700 (PDT) (envelope-from james.wilde@tbv.se) Received: (from uucp@localhost) by smtp2.tbv.se (8.9.1/8.9.1) id NAA15267 for ; Thu, 27 Apr 2000 13:03:49 +0200 (CEST) (envelope-from james.wilde@tbv.se) Received: from t5o72p49.telia.com(212.181.217.49), claiming to be "tbvhks12" via SMTP by smtp2.tbv.se, id smtpda15265; Thu Apr 27 13:03:44 2000 From: "James A Wilde" To: "FreeBSD Questions" Subject: Studying traffic on a mail server Date: Thu, 27 Apr 2000 12:49:33 +0200 Message-ID: <006501bfb036$45c58b80$8c0aa8c0@hk.tbv.se> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2377.0 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG We have a FreeBSD machine in the DMZ which is both a DNS server and an SMTP server. It has been displaying somewhat weird behaviour recently and I am wondering whether someone is playing tricks with it. We have been using the risky version of bind and version 8.9.3 - also risky, I believe - of sendmail. The machine also has SSH2. I'm in the process of updating bind and sendmail to the newest versions and I am wondering what kind of toos are available which might help me see what is going on in the machine and whether it is being attacked. I have a number of Bugtraq messages to look through for problems with these three programs but any direct advice from the assembled talent - and even general advice on securing this machine - would be much appreciated as I feel very much out of my depth. TIA for any help. mvh/regards James To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message