Re: [Exim] [ Exim 3.36 ] SMTP AUTH hacked ?

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MFrank S. Bernhardt at <-
MPhilip Hazel at ->
Delete this message
Reply to this message
Author: Georges Arnould
Date:  
To: frank
CC: exim-users
Subject: Re: [Exim] [ Exim 3.36 ] SMTP AUTH hacked ?
> Just a thought, but are you sure that the relay came from outside your
> sub-net? Is it possible that one of your internal systems was
> compromised in some way and that the internal system was used to send
> out the spam?

Nope : the spammers came from all over the world ... It seems that I have
progressively been discovered : a "huge spammer" (1600+ messages) came from
an IP, then others arrived and started to flood ... I never had spam before
: never received a single abuse (abuse@ routed to me and juste re-tested
:-)). Within one hour, I received 10 spammers that suddenly manage to send
mail through my system. My MTA could be misconfigured, but I am surprised
that so many spammers manage to bypass AUTH within a so short time !

Georges




This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [Exim] exim as relay for latest sendmail bug?Re: [Exim] [ Exim 3.36 ] SMTP AUTH hacked ?->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)