Date: Sun, 15 Dec 1996 23:17:33 +0800 (HKT)
From: Doug Kwan ~{9XUq5B~} <ctkwan@cs.hku.hk>
To: security@freebsd.org
Subject: mail bomb!
Message-ID: <Pine.SUN.3.91.961215230653.15897A-100000@champion>
next in thread | raw e-mail | index | archive | help
Hi all, We are a small ISP in Hong Kong. Our machines run both Linux and FreeBSD. Recently we found that an ex-user of ours wanted to revenge. That stupid kid grabbed a programme call kaboom! from the net and sent fake mails to all our user saying the our servers will be down for 6 days for maintenance. Needless to say, we receives many complaints from our users. What's more the damned kid send the very same message several time. We spent hours cleaning other users mail box. For the time being we had no solution to this except setting our routers to filter our packets from the relaying host used by that sucker. Has anyone on the list had similar experience? What could we do against this? I know filtering mails would be next to impossible. How about reject fake mails? We are running and ESMTP mail server and it logs all incoming IP's in the mails delivered. Is there anyway to reject mails with sending addresses in our domain but comming from outside? Any comment and suggest will be highly appreciate. Thanks -Doug Kwan
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.SUN.3.91.961215230653.15897A-100000>