From owner-freebsd-isp@FreeBSD.ORG Mon May 19 11:25:52 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6421D37B401 for ; Mon, 19 May 2003 11:25:52 -0700 (PDT) Received: from mail.openserve.net (mail.openserve.net [208.12.101.249]) by mx1.FreeBSD.org (Postfix) with SMTP id 350C343FBF for ; Mon, 19 May 2003 11:25:51 -0700 (PDT) (envelope-from bsd@hub3.net) Received: (qmail 31200 invoked from network); 19 May 2003 18:25:48 -0000 Received: from gw.hub3.net (HELO hub3.net) (bryan@208.12.101.245) by mail.openserve.net with SMTP; 19 May 2003 18:25:48 -0000 Date: Mon, 19 May 2003 11:25:48 -0700 Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v552) From: Bryan Vyhmeister To: freebsd-isp@freebsd.org Content-Transfer-Encoding: 7bit In-Reply-To: <523443F2-8A26-11D7-A0BC-003065BA9B36@titania.net> Message-Id: <501EEBD0-8A27-11D7-8061-000393D5E5DA@hub3.net> X-Mailer: Apple Mail (2.552) Subject: Re: Illegal use of my server?? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2003 18:25:52 -0000 I don't quite understand what happened. How was Squid used to relay mail? I'm glad this thread came up because I am just about to deploy a Squid cache. Bryan On Monday, May 19, 2003, at 11:18 AM, Joseph T. Klein wrote: > The Squid package and port should have a *big* warning sign on them > about this. > I know of at least one network that was blacklisted due to the lack of > tight > ACLs on Squid. > > On Monday, May 19, 2003, at 01:09 PM, Tony Saign wrote: > >> Any legal gurus out there?? >> >> Long story, but I'll summarize; >> >> On Friday 05/16 my T1 went down. >> In troubleshooting attempts it was discovered that a machine, on my >> network was being used maliciously. >> Not hacked, but Squid was being used to relay mail (i.e. SPAM). >> The machine was immediately brought down, and Squid was disabled. >> >> I received a call from my ISP, and they are NOT happy. >> Looking @ the logs, it appears that several thousand SPAM emails may >> have been sent. >> >> What should I do? Can I pursue each ISP in attempts to track down the >> guilty parties? >> Can I take any legal action against them? >> This is the last straw! I'm so frickin' sick of SPAM, and now people >> potentially got some w/ my IP address! >> Grrr!!! >> >> Any suggestions, advice would be greatly appreciated. >> >> >> _______________________________________________ >> freebsd-isp@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-isp >> To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >> >> > > -- > Joseph T. Klein > > PSTN: +1 415 462 1534 Mobile: +1 414 628 3380 > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >