[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] How to defend against dictionary attacks?

Subject: RE: [cobalt-users] How to defend against dictionary attacks?
From: "Dan Kriwitsky" <list3@xxxxxxxxxxxxxxxxxxxx>
Date: Thu Apr 15 12:20:00 2004
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

> >We saw this earlier in the week.  It's an e-mail that's 
> being sent to a
> >large number of common names at a given domain.
> >
> >SSH into your server and look at /var/log/maillog.  Search for the 
> >message
> >number, i3E4xEp08097 in the log snippet above.  The last 
> entry will show 
> >you where the message came from.  Look at the IP address, 
> not the faked 
> >sender name. (I do a backward search in vi to find the last entry.)
> >
> >Regards,
> >
> >         Richard.
> 
> Thanks a million Richard!
> 

I bet when you get the IP if you run it through http://openrbl.org/
you'll find it blacklisted by a number of sites.
-- 
C2003 Dan Kriwitsky

Please reply to the list only. Off list replies are not read.

Follow-Ups:
- RE: [cobalt-users] How to defend against dictionary attacks?
  - From: Glenn Parsons

References:
- Re: [cobalt-users] How to defend against dictionary attacks?
  - From: Glenn Parsons

Prev by Date: [cobalt-users] swish-e on cobalt raq 4i
Next by Date: RE: [cobalt-users] How to defend against dictionary attacks?
Previous by thread: Re: [cobalt-users] How to defend against dictionary attacks?
Next by thread: RE: [cobalt-users] How to defend against dictionary attacks?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index