[NCSA-discuss] Finding an infected machine
Steven Champeon
schampeo at hesketh.com
Wed Feb 22 10:32:05 EST 2006
on Wed, Feb 22, 2006 at 09:41:05AM -0500, James Hunt wrote:
> By the way, have you looked in the headers of the spam and made sure
> it's really your network's IP address? It'd be a shame to go through
> all the hoops when it's just some spammer faking your domain name in the
> reply address.
...though it'd be a good idea, /anyway/, to block outbound 25 /and log/
such traffic, so you hear about it before AOL does in the likely event
that one of your users does get infected.
--
hesketh.com/inc. v: +1(919)834-2552 f: +1(919)834-2554 w: http://hesketh.com/
antispam news, solutions for sendmail, exim, postfix: http://enemieslist.com/
More information about the ncsa-discussion
mailing list