From owner-freebsd-questions Sat Nov 9 21:51:15 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3935F37B401 for ; Sat, 9 Nov 2002 21:51:14 -0800 (PST) Received: from mail2.sea.registeredsite.com (mail2.sea.registeredsite.com [66.111.73.202]) by mx1.FreeBSD.org (Postfix) with ESMTP id B4AFF43E77 for ; Sat, 9 Nov 2002 21:51:13 -0800 (PST) (envelope-from WD@US-Webmasters.com) Received: from us-webmasters.com (us-webmasters.com [207.159.139.240]) by mail2.sea.registeredsite.com (8.12.5/8.12.5) with ESMTP id gAA5p7Km009445; Sun, 10 Nov 2002 00:51:09 -0500 Received: from xyz.netins.net (desm-04-113.dialup.netins.net [167.142.11.242]) by us-webmasters.com (8.9.3/8.9.3) with ESMTP id VAA11590; Sat, 9 Nov 2002 21:51:05 -0800 (PST) Message-Id: <5.1.0.14.2.20021109234938.0484dec0@us-webmasters.com> X-Sender: wd@us-webmasters.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sat, 09 Nov 2002 23:50:56 -0600 To: freebsd-questions@FreeBSD.ORG From: "W. D." Subject: Re: How to stop SPAMMER??! Cc: Gustaf Sjoberg In-Reply-To: <20021110030443.1b0577ad.gs@vacfu.org> References: <5.1.0.14.2.20021109150436.069a4d50@us-webmasters.com> <5.1.0.14.2.20021109150436.069a4d50@us-webmasters.com> Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG At 20:04 11/9/2002, Gustaf Sjoberg, wrote: >On Sat, 09 Nov 2002 15:13:09 -0600 >"W. D." wrote: > >either block incomming port 25 connections or set the smtp server to= require=20 >authentication. How to do this? > >ipfw entry could look something like: > >add deny log tcp from any to 25 in recv > >>Hi folks, >> >>I've got some bozo from: >> >> SpaWeb1.spaelegance.com..auth >> >>doing all kinds of SMTP activity on my FreeBSD server. Does anyone >>know how to stop this? What kind of entry would I add to ipfw? >> >>Does anyone know what vulnerability this might be? How to stop >>permanently? >> >>Here's what I am running: >>FreeBSD 4.4-RELEASE >>Apache/1.3.27 (Unix) >>mod_perl/1.26 >>mod_throttle/3.1.2 >>PHP/4.2.2 >>FrontPage/4.0.4.3 >>mod_ssl/2.8.11 >>OpenSSL/0.9.6f=20 >> >> >>Start Here to Find It Fast!=A9 ->= http://www.US-Webmasters.com/best-start-page/ >> >> >>To Unsubscribe: send mail to majordomo@FreeBSD.org >>with "unsubscribe freebsd-questions" in the body of the message >> Start Here to Find It Fast!=A9 -> http://www.US-Webmasters.com/best-start-pa= ge/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message