From owner-freebsd-isp@FreeBSD.ORG Mon May 19 11:19:00 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 131FA37B404 for ; Mon, 19 May 2003 11:19:00 -0700 (PDT) Received: from monet.titania.net (adsl-68-78-82-25.dsl.milwwi.ameritech.net [68.78.82.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6267043F93 for ; Mon, 19 May 2003 11:18:53 -0700 (PDT) (envelope-from jtk@titania.net) Received: from titania.net (morisot.titania.net [192.133.102.10]) (authenticated bits=0) by monet.titania.net (8.12.9/8.12.9) with ESMTP id h4JIKqMT031391 (version=TLSv1/SSLv3 cipher=DES-CBC3-SHA bits=168 verify=NO); Mon, 19 May 2003 18:20:52 GMT (envelope-from jtk@titania.net) Date: Mon, 19 May 2003 13:18:42 -0500 Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v552) To: "Tony Saign" From: "Joseph T. Klein" In-Reply-To: <000201c31e31$dc54c680$6ad2f10a@frankenmobl> Message-Id: <523443F2-8A26-11D7-A0BC-003065BA9B36@titania.net> Content-Transfer-Encoding: 7bit X-Mailer: Apple Mail (2.552) cc: freebsd-isp@freebsd.org Subject: Re: Illegal use of my server?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 18:19:00 -0000 The Squid package and port should have a *big* warning sign on them about this. I know of at least one network that was blacklisted due to the lack of tight ACLs on Squid. On Monday, May 19, 2003, at 01:09 PM, Tony Saign wrote: > Any legal gurus out there?? > > Long story, but I'll summarize; > > On Friday 05/16 my T1 went down. > In troubleshooting attempts it was discovered that a machine, on my > network was being used maliciously. > Not hacked, but Squid was being used to relay mail (i.e. SPAM). > The machine was immediately brought down, and Squid was disabled. > > I received a call from my ISP, and they are NOT happy. > Looking @ the logs, it appears that several thousand SPAM emails may > have been sent. > > What should I do? Can I pursue each ISP in attempts to track down the > guilty parties? > Can I take any legal action against them? > This is the last straw! I'm so frickin' sick of SPAM, and now people > potentially got some w/ my IP address! > Grrr!!! > > Any suggestions, advice would be greatly appreciated. > > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > -- Joseph T. Klein PSTN: +1 415 462 1534 Mobile: +1 414 628 3380