From owner-freebsd-stable Sat Sep 28 10:36: 6 2002 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CACAA37B401 for ; Sat, 28 Sep 2002 10:36:04 -0700 (PDT) Received: from tibor.org (117-5-237-24-cable.anchorageak.net [24.237.5.117]) by mx1.FreeBSD.org (Postfix) with ESMTP id 38CB843E75 for ; Sat, 28 Sep 2002 10:35:44 -0700 (PDT) (envelope-from tibor@tibor.org) Received: from xena.mikey.net (xena.mikey.net [192.168.1.2]) by tibor.org (Postfix) with ESMTP id B3CB9A918; Sat, 28 Sep 2002 09:35:39 -0800 (AKDT) Date: Sat, 28 Sep 2002 09:35:39 -0800 (AKDT) From: Mike Tibor X-X-Sender: tibor@xena.mikey.net To: Heywood Jblome Cc: freebsd-stable@freebsd.org Subject: Re: Possible trojan since upgrade In-Reply-To: <20020928035657.21042.qmail@web21402.mail.yahoo.com> Message-ID: <20020928093120.N23987-100000@xena.mikey.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Fri, 27 Sep 2002, Heywood Jblome wrote: > -----------This is the entry in question-------- > Sep 27 13:44:40 medusa sm-mta[1742]: g8RIiXgt001742: > from=, size=0, class=0, nrcpts=1, > proto=ESMTP, daemon=MTA, relay=[202.80.192.29] Could this just be someone doing the following: telnet mx1.zzzzzz.com 25 helo blah mail from: quit I don't really know what that would accomplish, but I've seen stranger things. I have no idea why the system would slow at all--I assume top (and others) don't show anything unusual? Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message