You don't mention several important things someone would need to answer this question fully.
1. Are you running a real mailserver that needs to send/receive mail to the outside world? If not then just block port 25 incoming. If yes, then configure some UCE (unsolicited commercial email) rules on sendmail (assuming this what you have since you didn't say) and/or consider using another mailserver with easier configured security (since you're probably not a sendmail wizard). I suggest qmail or Postfix, which I use. 2. Are you the recipient of spam or is your box being used as a relay? This shouldn't happen in the default configuration any longer I believe. Either check the Handbook online for sendmail configuration. 3. Dunno +---------------------------------------------------------------------+ |Steve Wingate <[EMAIL PROTECTED]> |MCSE, CCNA Sat Nov 9 16:59:00 PST 2002 +---------------------------------------------------------------------+ |FreeBSD 4.7-RC | 4:59PM up 21 days, 17:31, 2 users, load averages: 0.00, 0.00, 0.00 +---------------------------------------------------------------------+ On Sat, 9 Nov 2002, W. D. wrote: > Hi folks, > > I've got some bozo from: > > SpaWeb1.spaelegance.com..auth > > doing all kinds of SMTP activity on my FreeBSD server. Does anyone > know how to stop this? What kind of entry would I add to ipfw? > > Does anyone know what vulnerability this might be? How to stop > permanently? > > Here's what I am running: > FreeBSD 4.4-RELEASE > Apache/1.3.27 (Unix) > mod_perl/1.26 > mod_throttle/3.1.2 > PHP/4.2.2 > FrontPage/4.0.4.3 > mod_ssl/2.8.11 > OpenSSL/0.9.6f > > > Start Here to Find It Fast!© -> http://www.US-Webmasters.com/best-start-page/ > > > To Unsubscribe: send mail to [EMAIL PROTECTED] > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message
