[Cialug] Hijack This! (Equivalent on Linux?)

[cialug@cialug.org]

In the message header, are you getting the bounce because your domain is
listed as a reply to? Or are you seeing your server in the headers?

John Roach
Technical Service Specialist
Technology Connection
(800) 477-1300
John.L.Roach@wellsfargo.com
 
"This message may contain confidential and/or privileged information. If you
are not the addressee or authorized to receive this for the addressee, you
must not use, copy, disclose, or take any action based on this message or
any information herein. If you have received this message in error, please
advise the sender immediately by reply e-mail and delete this message. Thank
you for your cooperation."


-----Original Message-----
From: cialug-admin@cialug.org [mailto:cialug-admin@cialug.org] On Behalf Of
Andrew Lietzow
Sent: Friday, January 28, 2005 9:27 AM
To: cialug@cialug.org
Subject: [Cialug] Hijack This! (Equivalent on Linux?)

Cialug'ers,
I've both done a lot on this problem, and not near enough.   Some idiots 
in the world have decided to hijack my server as a Relay host for 
Spam.   I have only three entries in my /etc/mail/relay-domains listing, 
and these entries are NOT the domain from which they accomplish this spoof.

I am using sendmail 8.13.1.  Have not had a problem with this in the 
past until recently.   Apparently, I've relaxed my controls but I can't 
understand how they can relay if I haven't enabled it.   I thought 8.9 
and above defaulted to relaying denied? 

I'll keep digging but help is much appreciated.   I'm getting hundreds 
of messages about bounced mail and that is how I discovered them. 

TIA,

Andrew L.

_______________________________________________
Cialug mailing list
Cialug@cialug.org
http://cialug.org/mailman/listinfo/cialug