sendmail attack ? relaying denied
Hi, since yesterday my sendmail 8.11.3 does not relay any more. In the /etc/mail/access nothing was changed. I restarted sendmail again and again. but nothing helped. In /var/log/warn there are serveral lines like "sendmail[11695]: g4212j111695: collect: premature EOM: Error 0" Could this be a reason or am I hacked ? thanks GL ________________________________________________________________ Keine verlorenen Lotto-Quittungen, keine vergessenen Gewinne mehr! Beim WEB.DE Lottoservice: http://tippen2.web.de/?x=13
Yuppa, Gero Lindenblatt wrote:
Hi, since yesterday my sendmail 8.11.3 does not relay any more. In the /etc/mail/access nothing was changed. I restarted sendmail again and again. but nothing helped.
In /var/log/warn there are serveral lines like "sendmail[11695]: g4212j111695: collect: premature EOM: Error 0"
Could this be a reason or am I hacked ?
did you apply any changes to your firewall? Do you use the SuSE-FW or a selfmade script? Kernel version? SuSE-version? Shoe size? Favourite colour? Confession? :) Sendmail messages like the one above show up for various reasons. I once had a similar problem with a sendmail MTA and a Checkpoint firewall in front of it. The firewall apruptly ended all SMTP connections with a RST instead of correctly finishing the handshake, which lead to the error (and other annoyances). Maybe the reason for your relay problem is a "too securely" configured SMTP fw ruleset. It's difficult to tell wether there's more behind this error or not. A comprehensive review of your system logs may help here. Feel free to contact me via private mail if you want to discuss the problem further. Boris <bolo@lupa.de> ---
participants (2)
-
Boris Lorenz -
Gero Lindenblatt