[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] email attack?

Subject: Re: [cobalt-users] email attack?
From: "Paul Warner" <pwarner@xxxxxxxxxxxxxxxxxx>
Date: Sun Jul 27 19:29:00 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

> > In this case, though it has been by the 1000s and only against these 3
> > names...over and over from what appears to be a different origin relay
with
> > each attempt.  Trying to 'guess' a username I'd understand (as in Dan's
> > reference to a dictionary attack), but to get a 'no such user' and to
keep
> > pounding on that same user is rather futile IMHO.  Since the sender
doesn't
> > seem to care that these won't go through, piping them to /dev/null seems
to
> > hurt me more than them, no?  I thought (hoped/dreaded) there might be a
new
> > attack of some sort (or a Trojan that gets directions) that utilizes
these
> > accounts on its host...
> >
>
> Although it is difficulat to know whether these are related, I want to
> recommend checking cert.org when looking into attacks. This is the page
for
> the current set of "activity" items, including several that are e-mail
> based.
>

Dave-

I went ahead and snagged one of the messages and they're all bounces from a
Joe Job...I just gotta wait 4-5 days for my logs to slow down as all these
bounces fall off...

Thanks to all!

Paul

Follow-Ups:
- RE: [cobalt-users] email attack?
  - From: Dan Kriwitsky

References:
- Re: [cobalt-users] email attack?
  - From: David Shugarts

Prev by Date: Re: [cobalt-users] email attack?
Next by Date: RE: [cobalt-users] email attack?
Previous by thread: Re: [cobalt-users] email attack?
Next by thread: RE: [cobalt-users] email attack?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index