North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Re: 25,000 ton amphibious spam relay
Swaar, Matthew L. writes on 12/16/2003 3:52 PM:
Yup - and this was behind a Raptor firewall, which seems to have added to rather than subtracted from the general insecurity of an old exchange server, in this case.E-mailing the DOD-CERT is also another way to try to get these things fixed. (...I'm not 100% certain that getting this fixed was the point of this, but I figured I'd point that out on the off chance.) I'm forwarding the header information of this spam to the appropriate folks.
The no.name.available and via smtpd in the top header say it all - and so much for smtp proxies trying to munge every single piece of version information in sight including the smtp banner, to ensure "security by obscurity" :)> H: Received: from no.name.available by avnavfw.lpd17.navsea.navy.mil
> H: Received: from avnavfw.AVONDALE (188.8.131.52 [184.108.40.206]) byNot that just plain old exchange of such an antique vintage would have been anything but secure, nosirree ...
srs (postmaster|suresh)@outblaze.com // gpg : EDEDEFB9
manager, outblaze.com security and antispam operations