Re: [suse-security] How can I solve this problem with mail server
Thanks for the info, but is it possible to reject mail if the user doesn't exist in the mail server ? The sender always uses yahoo and hotmail. I cannot reject mail from those domains because people here receive messages from there (newspaper business you know). Anyway I'm going to check postfix. TIA // luis oliveira
Implement filterings using orbs or maps. www,mail-abuse.com. Also you may want to switch to postfix. Seee www.postfix.org/ press links (they link to 2 of my articles which have some content on why postfix is so damn good =).
Kurt Seifried, seifried@securityportal.com SecurityPortal - your focal point for security on the 'net
----- Original Message ----- From: "Luis Oliveira"
To: Sent: Sunday, December 31, 2000 12:45 PM Subject: [suse-security] How can I solve this problem with mail server Hi to all,
My company mail server is running on a Suse 6.3 system, with sendmail 8.9.3, and until sotime ago everything was running beautifully.
What happened is that we started to receive mail messages with links to porno sites. These mail messages are always addressed to non existant users in the mail system. We have tried to configure sendmail by way of webadmin to reject mail from the source addresses but the source adress is always changing. Is there any security problem with Suse 6.3 and/or sendmail that can cause this ?
What can I do to solve this?
Thanks in advance
On Mon, 1 Jan 2001, Luis Oliveira wrote:
Thanks for the info, but is it possible to reject mail if the user doesn't exist in the mail server ? The sender always uses yahoo and hotmail. I cannot reject mail from those domains because people here receive messages from there (newspaper business you know). Anyway I'm going to check postfix.
TIA
// luis oliveira
You can use the access database to block certain senders. But that only works if the sender is the same. Then there are some programs that can be configured to throw away mail based on subject line (I think libmilter, included in the distribution could be used to do this), you might want to check that out. And you can of course just receive it (use virtusertable to map incoming mail from the non-existing account to a real one), check out the header and inform the ISP of the abuse. If you're lucky, by 2003 they might undertake some action ;-) cheers Stefan
If the non-existant users are the same 5 or 6 names you might just put lines in /etc/aliases such as xyz: /dev/null and run newaliases. Greetings, E. +-+-+-+-+-+-+-+-+-+-+-+-+-+-+ Erwin Rennert, Center for Social Innovation Austria, Europe erwin@zsi.at On Mon, 1 Jan 2001, Luis Oliveira wrote:
Thanks for the info, but is it possible to reject mail if the user doesn't exist in the mail server ? The sender always uses yahoo and hotmail. I cannot reject mail from those domains because people here receive messages from there (newspaper business you know). Anyway I'm going to check postfix.
TIA
// luis oliveira
Implement filterings using orbs or maps. www,mail-abuse.com. Also you may want to switch to postfix. Seee www.postfix.org/ press links (they link to 2 of my articles which have some content on why postfix is so damn good =).
Kurt Seifried, seifried@securityportal.com SecurityPortal - your focal point for security on the 'net
----- Original Message ----- From: "Luis Oliveira"
To: Sent: Sunday, December 31, 2000 12:45 PM Subject: [suse-security] How can I solve this problem with mail server Hi to all,
My company mail server is running on a Suse 6.3 system, with sendmail 8.9.3, and until sotime ago everything was running beautifully.
What happened is that we started to receive mail messages with links to porno sites. These mail messages are always addressed to non existant users in the mail system. We have tried to configure sendmail by way of webadmin to reject mail from the source addresses but the source adress is always changing. Is there any security problem with Suse 6.3 and/or sendmail that can cause this ?
What can I do to solve this?
Thanks in advance
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
participants (3)
-
Erwin Rennert
-
Luis Oliveira
-
Stefan Suurmeijer