[linux] security problem

Matus "fantomas" Uhlar uhlar na fantomas.sk
Pátek Srpen 17 16:51:03 CEST 2001


-> V poslednom case mam problemy s mailami. Mam jeden server Sendmail
-> 8.11.2/8.11.2/SuSE Linux a defaultne mam relay len z tej masiny. Skusal
-> som ododlat cez ten server mail a dostal som Relaying denied. IP name
-> lookup failed. Takze sa mi zda, ze je to dobre. Lenze tvrdia mi, ze cez
-> to presiel smap Napada vam nejaky sposob ?

asi nerozumiem, skus to preformulovat...

-> Dalsi problem je tento: kolega igor dostal mail s takouto hlavickou:

-> Received: by zero.rainside.sk (mbox igor)
->  (with Cubic Circle's cucipop (v1.31 1998/05/13) Thu Aug 16 10:00:02 2001)
-> X-From_: brano na vartik.sk  Thu Aug 16 00:33:43 2001
-> Return-Path: <brano na vartik.sk>
-> Received: from fena.sknet.sk (mail.ba.euroweb.sk [195.12.128.7] (may be 
-> forged))
-> 	by zero.rainside.sk (8.8.7/8.8.7) with ESMTP id AAA10094;
-> 	Thu, 16 Aug 2001 00:33:43 +0200
-> Received: from PEKLO (dialup34.ke.sknet.sk [195.12.148.44]) by fena.sknet.sk 
-> with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2653.13)
-> 	id Q803GHL1; Thu, 16 Aug 2001 00:31:39 +0200
-> Received: by PEKLO with Microsoft Mail
-> 	id <01C125EA.D831C580 na PEKLO>; Thu, 16 Aug 2001 00:31:52 +0200
-> Message-ID: <01C125EA.D831C580 na PEKLO>
-> From: "VARTIK, Branislav" <brano na vartik.sk>
-> To: "'VARTIK, Branislav'" <brano na vartik.sk>
-> Subject: Pozdrav
-> Date: Thu, 16 Aug 2001 00:30:44 +0200
-> MIME-Version: 1.0
-> Content-Type: text/plain; charset="us-ascii"
-> Content-Transfer-Encoding: quoted-printable
-> 
-> Problem je ten, ze vidim odosielatel aj prijemca je ten isty clovek, tak
-> ako sa to mohlo dostat k mojmu kolegovi, ked tam nevidim v hlavicke
-> ziadnu jeho adresu ?

moze to byt bounce, Bcc: a celkom je mozne ze to je fake email. kto ho v
skutocnosti poslal, zistis z eurowebu... skutocny recipient ide v SMTP
hlavicka RCPT TO: ktora v maile byt nemusi. Niektore mailery pridavaju do
hlaviciek Delivered-To: ale tvoj asi nie.

-- 
 Matus "fantomas" Uhlar, sysadmin at NEXTRA, Slovakia; IRCNET admin of *.sk
 uhlar na fantomas.sk ; http://www.fantomas.sk/ ; http://www.nextra.sk/
 There's a long-standing bug relating to the x86 architecture that
 allows you to install Windows.   -- Matthew D. Fuller




Další informace o konferenci linux