Server hacked... 2003-06-14 - By Jeff Kinz
Back
On Sat, Jun 14, 2003 at 05:30:49PM +0530, System wrote:
> Hello All,
>
> >From last few days the server load is continuously running between 25% -
> 75%. Someone has hacked into the server sending mail. Is there some way we
> can tract this and shut them out.
Hi Tina - as a followup here are three more lines that must have dnl in
front of them to prevent relaying:
# FEATURE(relay_local_from). This feature allows relaying if the
message claims to originate at your domain. Since forging this address
is trivial, this is probably a bad idea.
# FEATURE(loose_relay_check). This turns off checking for explicit
routing through your host, such as target%C.ORG@(protected)
# FEATURE(promiscuous_relay). This is the absolute worst one to have
turned on.
>
--
Jeff Kinz, Open-PC, Emergent Research, Hudson, MA. jkinz@(protected)
copyright 2003. Use is restricted. Any use is an
acceptance of the offer at http://www.kinz.org/policy.html.
Don't forget to change your password often.
|
|
