From owner-freebsd-security  Tue Sep 21 16:31:42 1999
Delivered-To: freebsd-security@freebsd.org
Received: from sand2.sentex.ca (sand2.sentex.ca [209.167.248.3])
	by hub.freebsd.org (Postfix) with ESMTP id DA4E914F86
	for <security@FreeBSD.ORG>; Tue, 21 Sep 1999 16:31:39 -0700 (PDT)
	(envelope-from mike@sentex.net)
Received: from gravel (ospf-mdt.sentex.net [205.211.164.81])
	by sand2.sentex.ca (8.8.8/8.8.8) with SMTP id TAA08027;
	Tue, 21 Sep 1999 19:31:37 -0400 (EDT)
	(envelope-from mike@sentex.net)
Message-Id: <4.1.19990921194237.05e17600@granite.sentex.ca>
X-Sender: mdtancsa@granite.sentex.ca
X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 
Date: Tue, 21 Sep 1999 19:45:16 -0400
To: "Mr. K." <bsd@a.servers.aozilla.com>
From: Mike Tancsa <mike@sentex.net>
Subject: Re: Sendmail blocking of spammers (was Re: hackers?)
Cc: security@FreeBSD.ORG
In-Reply-To: <Pine.BSF.4.10.9909211919390.10661-100000@inbox.org>
References: <3.0.5.32.19990921153905.01499100@staff.sentex.ca>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

At 07:20 PM 9/21/99 , Mr. K. wrote:
>> You have another option. If you have tcp_wrappers installed (its installed
>> in all 3.[2|3] versions by default), you can deny by sub domain.  The
>> spammers are coming from *.ipt.aol.com.  Block from that subdomain on.  AOL
>> for its mail exchangers are all of the form xx.mx.aol.com, not ipt.aol.com
>> e.g.
>> aol.com preference = 15, mail exchanger = zd.mx.aol.com
>> 
>> 	---Mike
>> 
>ah, good idea.  will that block aol users from accessing my website,
>though?

You dont have to wrap uniformly for all services. You would do this only
for sendmail.
e.g. in your /etc/hosts.allow
sendmail : .evil.cracker.example.com : deny
sendmail : .ipt.aol.com : deny

There is generally no reason those dialup customers would want to / need to
speak directly to your mail server.

	---Mike
**********************************************************************
Mike Tancsa, Network Admin        *  mike@sentex.net
Sentex Communications Corp,       *  http://www.sentex.net/mike
Cambridge, Ontario                *  01.519.651.3400
Canada                            *


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message