[CLUE-Tech] My Open Relay (again)
David Willson
DLWillson at TheGeek.NU
Thu Sep 13 09:25:39 MDT 2001
To recap:
My RHL 6.1 box, mailman.thegeek.nu, is in an 'open-relay' state. I am not
sure, but it may have been hacked into. I believe that the modified file is
/etc/sendmail.cf, but again I'm not sure. I am looking for a quick fix,
because I am actively being used as a spam relay, perhaps by the original
hacker. My long-term fix will be a scratch rebuild and data restore.
----- Original Message -----
From: "ian" <iguy at ionsphere.org>
To: "David Willson" <DLWillson at thegeek.nu>
Sent: Thursday, September 13, 2001 9:17 AM
Subject: Re: [CLUE-Tech] My Open Relay (again)
> What's the problem now?
>
> ian
>
> On Thu, Sep 13, 2001 at 08:48:34AM -0600, David Willson wrote:
> > OK, I've tried installing the latest sendmail packages, but my system is
so
> > hopelessly out-of-date that I fail dependencies. I have decided that
the
> > best fix is a re-build with the latest release of my favorite
distribution
> > and all updates.
> >
> > ...but I won't have time to do that for a few days at least, so...
> >
> > Does anyone have a known-good 'sendmail.cf' from RedHat 6.x? I'm pretty
> > sure that that's the file that was modified in order to open up my
relay.
> > 'Course, if I'm wrong, I'll be begging for help again...
> >
> > _______________________________________________
> > CLUE-Tech mailing list
> > CLUE-Tech at clue.denver.co.us
> > http://clue.denver.co.us/mailman/listinfo/clue-tech
>
More information about the clue-tech
mailing list