Date: Sun, 15 Aug 2010 10:38:29 -0500 From: Ryan Coleman <ryan.coleman@cwis.biz> To: peter@vfemail.net Cc: FreeBSD Questions <freebsd-questions@freebsd.org> Subject: Re: Open Mail Relay Message-ID: <BCC7F601-8B85-4506-81A5-39A6D7809538@cwis.biz> In-Reply-To: <20100815152031.D72621065675@hub.freebsd.org> References: <201008142113.o7ELDsin018314@mail.r-bonomi.com> <20100815152031.D72621065675@hub.freebsd.org>
index | next in thread | previous in thread | raw e-mail
On Aug 15, 2010, at 6:57 AM, peter@vfemail.net wrote: > I've requested copies of the offensive messages, and I'm hopeful the complainer will send me copies. I believe I have control over the majordomo lists -- postings are restricted to list members, postings are monitored, and many lists are moderated. > > Assume, as Mr. Bonomi suggests, that some bad guy has installed some type of additional mailer on the machine or another machine that's allowed to relay mail. How would I go about locating that other mailer? In my experiences if they were relaying through your machine you'd still see it on the logs. Look for the time/date of the emails you get from the complainant and see if anything matches up. Then use the IPs to track down who might be doing it. A little detective work can go a long way. -- Ryanhelp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BCC7F601-8B85-4506-81A5-39A6D7809538>