Donncha O Caoimh writes:
[...]
> from=<john at digitalisp.net>, size=0, class=0, nrcpts=0, proto=SMTP,
> daemon=MTA, relay=rlkal1a052.comtech-data.se [194.198.208.52] (may be
> forged)
[...]
We were "Rumplestiltskin"-attacked last Saturday, and it came from the
same IP address. I sent a nastygram to the whois contact as well as
abuse/postmaster at comtech-data.se, and haven't seen any occurrences since,
but obviously, you were hit on Tuesday.
<rant severity="mild">
I have seen an at least two-fold (estimated) increase in spam volume
over the past twelve months, and I don't think that's the end if it.
"Rumplestiltskin" attacks are becoming more common, and another major
annoyance one the increase is spamming-backlash in the form of mailer-
daemon bounce messages, where the spammer was using addresses from your
domain as envelope sender. We were recently hit by this and received
over 15.000 bounce messages (spread over a few days, thankfully).
I can deal with this fine, as I have set up our mail gateway to reject
mail for invalid addresses at smtp level, but the sh!t gets really hot
once spammers start using real, valid addresses (which happened to me
and others already, although not in volume).
</rant>
Sorry for the OT :)
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
