From owner-freebsd-questions@FreeBSD.ORG Wed Feb 18 12:08:49 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BC06A16A4CF for ; Wed, 18 Feb 2004 12:08:49 -0800 (PST) Received: from chomsky.sohotech.ca (ottawa-hs-64-26-169-251.s-ip.magma.ca [64.26.169.251]) by mx1.FreeBSD.org (Postfix) with ESMTP id 690C443D1D for ; Wed, 18 Feb 2004 12:08:49 -0800 (PST) (envelope-from ebudd@grokking.org) Received: from heinlein.sohotech.ca (heinlein.sohotech.ca [192.168.1.3]) (authenticated bits=0) by chomsky.sohotech.ca (8.12.9p1/8.12.9) with ESMTP id i1IK8lws019033 for ; Wed, 18 Feb 2004 15:08:47 -0500 (EST) (envelope-from ebudd@grokking.org) Date: Wed, 18 Feb 2004 15:08:53 -0500 From: Ed Budd To: freebsd-questions@freebsd.org Message-Id: <20040218150853.2b121ac3.ebudd@grokking.org> In-Reply-To: <45614.207.43.195.204.1077067743.squirrel@www.themango.org> References: <45614.207.43.195.204.1077067743.squirrel@www.themango.org> X-Mailer: Sylpheed version 0.9.4 (GTK+ 1.2.10; i686-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: My fault or just Spam X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 18 Feb 2004 20:08:50 -0000 It's a virus (my AV calls it Worm.Gibe.F). I bet most of the list gets these occasionally. Some hapless windows user got infected and has you in their address book (perhaps through the outlook auto-add-addresses-to-addressbook-function applied to something you posted once on a public list??) Install Clamav from ports and set it up to interface with postfix (I use it with sendmail milter but should be similar -- check clamav site for details). Don't sweat it, man -- life as usual in the wild-and-woolly... EB On Tue, 17 Feb 2004 19:29:03 -0600 (CST) luke@themango.org wrote: > I've fairly recently setup a mail server to: > > 1) learn about email and server configurations and all that goes along > with administrating it. > > 2) And being able to recieve loads of email from freebsd-questions > without fear of restriction on any other account (i.e. loss of email > that I want to save). > > Anyhow, within the month that I've had my server running I've been > recieving numerous emails that are obviously malicious to Windows > users(i.e. contain an attachment with some random-letters.exe and > nonsense about a patch). In short my concern is not that me or my wife > will run this, sense we don't use Windows, but whether these emails > are just spam or if it is my fault. > > If said emails are just spam, fine. Not to say that I like spam but it > gives me a reason to learn how to setup a spam filter and/or tarpit. > The reason I worry that it's not just spam is that there are only 2 > accounts, mine and my wifes, and she doesn't use her's except to email > me and I've only used mine to setup freebsd-questions and email her. > So why would I be getting spam? So then I think maybe it's my fault. > > What I mean by my fault is, is my machine being used to relay spam and > then I am getting bounces from the poor people recieve this crap? I > really would hate for this to be the case. Even if said emails are not > my fault how do I assure that I am not relaying spam unbeknown to me? > > This is a sample header from one such email. Now I'm not too sure how > to take this. > > Return-Path: > Received: from mail.themango.org ([unix socket]) > by mail.themango.org (Cyrus v2.2.3) with LMTP; Tue, 17 Feb 2004 > 16:06:23 -0600 > X-Sieve: CMU Sieve 2.2 > Received: from centennialrd.net (unknown [196.32.150.6]) > by themango.org (Postfix) with ESMTP id B2194450F2 > for ; Tue, 17 Feb 2004 16:06:21 -0600 (CST) > Received: from qexstrg (jp [196.32.129.120]) > by centennialrd.net (8.12.10/8.12.10) with SMTP id > i1HLwZHp022746; Tue, 17 Feb 2004 17:58:36 -0400 > Date: Tue, 17 Feb 2004 17:58:35 -0400 > Message-Id: <200402172158.i1HLwZHp022746@centennialrd.net> > From: "Technical Bulletin" > To: "MS User" > SUBJECT: Newest Microsoft Patch > Mime-Version: 1.0 > Content-Type: multipart/mixed; boundary="bicnhrvs" > > My configuration is FreeBSD 5.2.1, Postfix + Cyrus > > Thanks for any help, > > Luke > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"