[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Have I been hacked?

Subject: RE: [cobalt-users] Have I been hacked?
From: "Dan Kriwitsky" <webhosting@xxxxxxxxx>
Date: Thu Jan 18 21:22:20 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> jill is obviously not a user of my server.
>
> Return-Path: <Jill@xxxxxxxxxxxxxxxxxx>
> Received: from ns1.muldooninc.com ([207.228.244.24]) by hickory.epix.net
>           with ESMTP
>           id <20010117232149.TYQB13451.hickory@xxxxxxxxxxxxxxxxxx>
>           for <muldoon@xxxxxxxxxxx>; Wed, 17 Jan 2001 18:21:49 -0500
> Received: from www. (earth.shnet.edu.cn [202.112.26.33] (may be forged))
>  by ns1.muldooninc.com (8.9.3/8.9.3) with SMTP id SAA06965;
>  Wed, 17 Jan 2001 18:21:35 -0500
> Received: from 202.112.26.33 by www. (SMI-8.6/SMI-SVR4)
>  id XAA09984; Wed, 17 Jan 2001 23:59:48 +0800
> Message-Id: <200101171559.XAA09984@www.>
> To: Friend@xxxxxxxxxx
> Date: Wed, 17 Jan 01 07:36:04 EST
> From: Jill@xxxxxxxxxxxxxxxxxx
> Subject: You have to see this!!
> Reply-To: freevisacards2007@xxxxxxxxx
>

Looks like ordinary Spam sent to your server since you have a catch-all set
up, jill@ is a valid address. 202.112.26.33 is an open relay in China.
--
Dan Kriwitsky

References:
- [cobalt-users] Have I been hacked?
  - From: Tim M. Muldoon

Prev by Date: Re: [cobalt-users] Telnet - Access Denied Message
Next by Date: Re: [cobalt-users] Telnet - Access Denied Message
Previous by thread: [cobalt-users] Have I been hacked?
Next by thread: Re: [cobalt-users] Have I been hacked?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index