Date: Tue, 4 Aug 1998 08:58:41 -0700 (PDT) From: Dan Busarow <dan@dpcsys.com> Cc: Frank Griffith <frankg@idfw.com>, freebsd-questions@FreeBSD.ORG Subject: Re: Security Message-ID: <Pine.BSF.3.96.980804085346.22598D-100000@java.dpcsys.com> In-Reply-To: <Pine.BSF.4.01.9808040405190.380-100000@guerilla.foo.bar>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 4 Aug 1998, Sascha Schumann wrote: > On Mon, 3 Aug 1998, Frank Griffith wrote: > > web server on this same unit. It appears that while I've been > > testing my server, some bozo came in and used sendmail > > to send some rough and threatening e-mail to someone. My > > ISP even cancelled my account until I proved I had nothing > > to do with it. > > /var/log/maillog and the headers of the emails. > > You can prevent this and other attacks by setting up a simple firewall on > your system. There are some examples provided in /etc/rc.firewall, so the > easiest thing to get a quick and dirty protection: Firewalls don't work against relay abuse unless you want to deny all use of sendmail. Easiest way to fix is to install sendmail 8.9.x You can also apply JMB's anti relay/spam rules to your current sendmail, see /etc/mail/sendmail.additions. 8.9.x basically built the same functionality in and uses different option to turn it on, the anti-relay stuff is enabled by default. Dan -- Dan Busarow 949 443 4172 DPC Systems / Beach.Net dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980804085346.22598D-100000>