Date: Sun, 08 Sep 1996 10:22:04 -0400 From: Kurt Schafer <kurt@cyberbeach.net> To: freebsd-questions@freebsd.org Subject: Mail bombing perhaps ? Message-ID: <1.5.4.32.19960908142204.008c97e4@post.cyberbeach.net>
next in thread | raw e-mail | index | archive | help
When I watch my maillog, I see requests from this site come in every minute or two like clockwork. Sep 7 13:10:02 wave sendmail[1028]: NAA01028: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] Sep 7 13:15:02 wave sendmail[1078]: NAA01078: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] P, relay=root@cicerone.uunet.ca [142.77.1.11] Sep 7 13:18:04 wave sendmail[1113]: NAA01113: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] Sep 7 13:19:02 wave sendmail[1135]: NAA01135: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] Sep 7 13:21:04 wave sendmail[1154]: NAA01154: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] Sep 7 13:23:06 wave sendmail[1178]: NAA01178: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] Sep 7 13:24:01 wave sendmail[1191]: NAA01191: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] Sep 7 13:25:03 wave sendmail[1204]: NAA01204: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] Sep 7 13:26:02 wave sendmail[1212]: NAA01212: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] Sep 7 13:27:05 wave sendmail[1221]: NAA01221: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] Sep 7 13:28:06 wave sendmail[1228]: NAA01228: from=<owner-bonsai@HOME.EASE.LSOFT.COM>, size=0, class=0, pri=0, nrcpts=0, proto=ESMTP, relay=root@cicerone.uunet.ca [142.77.1.11] However, when I grep through the log for the corresponding identifiers, ie NAA01228, I never see any evidence of the mail actually arriving anywhere ? Does this make any sense ? Is there some other way I can determine whether or not the mail from this site, as evidenced by the transactions above, are actually arriving in any of my users mailboxes ? -Kurt
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1.5.4.32.19960908142204.008c97e4>