From owner-freebsd-advocacy@freebsd.org Sun Nov 8 17:57:16 2015 Return-Path: Delivered-To: freebsd-advocacy@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 7D421A299BA for ; Sun, 8 Nov 2015 17:57:16 +0000 (UTC) (envelope-from jhellenthal@dataix.net) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 56360150B for ; Sun, 8 Nov 2015 17:57:16 +0000 (UTC) (envelope-from jhellenthal@dataix.net) Received: by mailman.ysv.freebsd.org (Postfix) id 546ACA299B8; Sun, 8 Nov 2015 17:57:16 +0000 (UTC) Delivered-To: advocacy@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 540D2A299B7 for ; Sun, 8 Nov 2015 17:57:16 +0000 (UTC) (envelope-from jhellenthal@dataix.net) Received: from mail-ig0-x22a.google.com (mail-ig0-x22a.google.com [IPv6:2607:f8b0:4001:c05::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 1BCE21505 for ; Sun, 8 Nov 2015 17:57:16 +0000 (UTC) (envelope-from jhellenthal@dataix.net) Received: by igvg19 with SMTP id g19so13769842igv.1 for ; Sun, 08 Nov 2015 09:57:15 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dataix.net; s=rsa; h=content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=cN+pCTIQd9gBSUW39DUgjHfHGg2N9G2PZEj8bzsliEA=; b=Sl8YGh6luxpyd27g+UP3hXBI7yaPqXshycJKrBq9OdyFEOOmbHguPMdldpJvi1+YAy +2na4oPaToWjS+plF5yMXnQ1TPIW1lLMLJWghYMWn/9MZ3cVN0TB7YfhQclPE4BfqwHS nEZwYFtraxsGLEQ6oc5n7aN54p0xnBj3Tu3Nc= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:content-type:mime-version:subject:from :in-reply-to:date:cc:content-transfer-encoding:message-id:references :to; bh=cN+pCTIQd9gBSUW39DUgjHfHGg2N9G2PZEj8bzsliEA=; b=cte9IcdZaB9/cl0G/F6s+r1VJ43BrfGeoUPyXdfQHyFB4GI7/yIJYjF7Tv1MLXTYgM FTrR4w73NEXxstNi5cZWyp054USYKu3jPtFcRoNyc/B2nYhwMbkttR4IXvHp3ZgGDo76 qKaRByEOOAk+TqVquiQ5zmBFTfUJtK53huHMPshoQ5HTCZKTzrj+pdKs2T+0N3giOW7H XvodB0hVhVT7ArZ64R0Tpnssp3UpZtaFRgK6zGHHjP5Z/GcDlMSBJJzJIBHEpMDrHPVK a2RGy4hClJYlTJYF2diLyXifODtckHvvjhMGEDAFBA81AFs9GitsvJ+gBHmsK3S9ZpCh pO1A== X-Gm-Message-State: ALoCoQk2t3N/C4rET/nlqwTB/EEdxAYS5sy84pOpxc4StUduE+tyOKEGyHApHpCj89GhvtBrZOjj X-Received: by 10.50.79.170 with SMTP id k10mr18150806igx.90.1447005435451; Sun, 08 Nov 2015 09:57:15 -0800 (PST) Received: from [172.31.32.31] (cpe-65-26-238-24.wi.res.rr.com. [65.26.238.24]) by smtp.gmail.com with ESMTPSA id i69sm4114444iod.27.2015.11.08.09.57.14 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Sun, 08 Nov 2015 09:57:15 -0800 (PST) Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (1.0) Subject: Re: Interfax From: Jason Hellenthal X-Mailer: iPhone Mail (13B143) In-Reply-To: <563F86D8.7000008@maslow.org> Date: Sun, 8 Nov 2015 11:57:14 -0600 Cc: advocacy@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: References: <563F86D8.7000008@maslow.org> To: Cannon X-BeenThere: freebsd-advocacy@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: FreeBSD Evangelism List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 Nov 2015 17:57:16 -0000 One of our domains of approximately 500+ users was hit with this last week a= nd the week before. Identified as some backdoor code. --=20 Jason Hellenthal JJH48-ARIN On Nov 8, 2015, at 11:31, Cannon wrote: First time I've seen it and first impression was that it was */D-t/**/rap/* a= la Abe Maslow. Then senders looked OK, but there was no attachment. Ass= ume just system bulk delivery artifact. Gone are the old elm days. _______________________________________________ freebsd-advocacy@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-advocacy To unsubscribe, send any mail to "freebsd-advocacy-unsubscribe@freebsd.org"