Re: repeated attempts delivering mail to 'unknown user@samedomain'

To: Florian Weimer <fw@deneb.enyo.de>
Cc: debian-security@lists.debian.org
Subject: Re: repeated attempts delivering mail to 'unknown user@samedomain'
From: lars brun nielsen <lbn@danmedia.dk>
Date: Sun, 06 Feb 2005 13:32:29 +0100
Message-id: <[🔎] 42060E5D.2000603@danmedia.dk>
In-reply-to: <[🔎] 87oeeyoskk.fsf@deneb.enyo.de>
References: <[🔎] 4205E238.9060005@danmedia.dk> <[🔎] 87oeeyoskk.fsf@deneb.enyo.de>

Florian Weimer wrote:

in the last 3 days, one of our mx domains has been the target of the
following ( the real domainname replaced by DOMAIN.XX ) :


These are just regular spamming attempts.  Nothing to worry about.

it's the network connection part of it that baffles me. we're past thetcp handshaking when smtp is invoked, which means there's a validconnection ( = src and dest exists ) - for me it implies that thespammer(bot) sends from multiple valid ips/networks, and with theridiculous generatedaccount names, i fail to see the point from the spammers view ( nothingis ever accepted )



--
expect neither good nor evil.
	- deal with it

Reply to:

References:
- repeated attempts delivering mail to 'unknown user@samedomain'
  - From: lars brun nielsen <lbn@danmedia.dk>
- Re: repeated attempts delivering mail to 'unknown user@samedomain'
  - From: Florian Weimer <fw@deneb.enyo.de>

Prev by Date: Re: repeated attempts delivering mail to 'unknown user@samedomain'
Next by Date: Re: repeated attempts delivering mail to 'unknown user@samedomain'
Previous by thread: Re: repeated attempts delivering mail to 'unknown user@samedomain'
Next by thread: Re: repeated attempts delivering mail to 'unknown user@samedomain'
Index(es):
- Date
- Thread