question on smtp AUTH
- From: David Banning <david+dated+1169143698.53a39d@xxxxxxxxxxxxx>
- Date: Sat, 13 Jan 2007 13:08:17 -0500
I am still pouring over logs to check how my server has been spamming.
I am wondering about the possibility of someone using a working login and password
to send spam through my server. So here is my question;
I look at my maillog and see the following spam;
maillog.0:Jan 11 02:14:17 3s1 sm-mta[3540]: l0B7EGO6003540:
from=<www@xxxxxxx>, size=478, class=0, nrcpts=1, msgid=<200701110714.l0B7
EGMu003539@xxxxxxx>, proto=ESMTP, daemon=MTA, relay=3s1.com [209.161.205.12]
www@xxxxxxx does not exist as a user on my system, but the relay is mine
(3s1.com), and 209.161.205.12 is mine.
How can I find out or log when a user sends mail, what authentication was
used? If they have to login to send through my server, who did they login
as? - how would I find that out?
_______________________________________________
freebsd-questions@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: question on smtp AUTH
- From: Jonathan Horne
- Re: question on smtp AUTH
- From: John Levine
- Re: question on smtp AUTH
- From: Paul Schmehl
- Re: question on smtp AUTH
- Prev by Date: Re: Easier way to install on 3ware 9550 card?
- Next by Date: Clamav Antivirus install failure
- Previous by thread: load balancing with multiple pppoe sessions
- Next by thread: Re: question on smtp AUTH
- Index(es):
Relevant Pages
|
