Re: [exim] Am I Hacked?

Top Page
This message is part of the following thread:
M\the complete thread tree sorted by date
MMRenaud Allard at <-
MMRick Lutowski at ->
Delete this message
Reply to this message
Author: Wakko Warner
Date:  
To: Heiko Schlittermann
CC: exim-users
Subject: Re: [exim] Am I Hacked?
Heiko Schlittermann wrote:
> Rick Lutowski <rick@???> (Do 04 Jan 2007 18:11:34 CET):
> > Is there any way to disable the kind of access he
> > demonstrated without compromising normal exim
> > operation?
>
> I'm not sure if in Exim 3.x you could reject unknown users already at
> SMTP time, but if you'd upgrade to Exim 4.x: you can.
> (AFAIR Debians install script tries to convert the config, but I'm not
> sure, so be prepared to be challenged :))

IIRC, Exim 3.x can reject unknown recipients at SMTP time, I forget the
version but I do recall this. I was late on upgrading, but that was years
ago! =)

Given this, I'd highly recommend that he not place his SMTP server back
online until he has a basic understanding of what is going on. Converting
his current to v4.x config will pretty much give him the same vulnerability
(This is an assumption, but, as stated, you shouldn't rely solely on convert
script to generate a corretly working config)

--
Lab tests show that use of micro$oft causes cancer in lab animals
Got Gas???


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] confirm bug for Spamassassin with EximRe: [exim] Am I Hacked?->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)