[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] logcheck and cobalt-developers-admin@xxxxxxxxxxxxxxx

Subject: Re: [cobalt-users] logcheck and cobalt-developers-admin@xxxxxxxxxxxxxxx
From: flash22@xxxxxxx
Date: Fri May 25 05:49:21 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Wed, 23 May 2001, Gerald Waugh wrote:

> Why am I getting these messages in my log files?
> 
> Security Violations
> =-=-=-=-=-=-=-=-=-=
> May 23 00:30:46 fsn3 sendmail[1140]: f4N4Uk301140:
> from=<cobalt-developers-admin@xxxxxxxxxxxxxxx>, size=3471, class=-60, nrcpts=1,
> msgid=<004801c0e339$7b381d50$3200a8c0@BADNOTE>, proto=ESMTP, daemon=MTA,
> relay=list.cobalt.com [63.77.128.170]

Probably matching the word 'BAD' ...(msgid) It's probably worth making a
logcheck rule to ignore the 'from' lines from sendmail unless they contain
unknown or denied...(msgid is quasi-random, so it will always generate
spurious hits...)

gsh

References:
- [cobalt-users] logcheck and cobalt-developers-admin@xxxxxxxxxxxxxxx
  - From: Gerald Waugh

Prev by Date: [cobalt-users] resolve ident
Next by Date: RE: OT RE: [cobalt-users] Call To Arms Against New.Net
Previous by thread: Re: [cobalt-users] logcheck and cobalt-developers-admin@xxxxxxxxxxxxxxx
Next by thread: [cobalt-users] Determining the packages installed?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index