nanog mailing list archives

Re: Port 25 - Blacklash

From: Valdis.Kletnieks () vt edu
Date: Wed, 27 Apr 2005 12:45:31 -0400

On Wed, 27 Apr 2005 14:31:42 +0530, Suresh Ramasubramanian said:

But with smtp auth, the infected user is stamped in the email headers,
and all over my MTA logs, when a bot that hijacks his PC starts
spamming.


Of course, the same ISPs that will use the ID in the email headers are,
by and large, the same ones that already know how to match the IP in the
headers to their radius/tacacs/etc logs....

Attachment: _bin
Description:

Current thread:

Re: FW: Port 25 - Blacklash, (continued)
- Re: FW: Port 25 - Blacklash Matt Ghali (Apr 26)
- Re: FW: Port 25 - Blacklash Eric Gauthier (Apr 26)
  - Re: Port 25 - Blacklash Adam Jacob Muller (Apr 26)
    - Re: Port 25 - Blacklash Hank Nussbacher (Apr 26)
    - Re: Port 25 - Blacklash Valdis . Kletnieks (Apr 26)
    - Re: Port 25 - Blacklash Daniel Golding (Apr 26)
    - Re: Port 25 - Blacklash Alexei Roudnev (Apr 27)
    - Re: Port 25 - Blacklash Joel Jaeggli (Apr 27)
    - Re: Port 25 - Blacklash Suresh Ramasubramanian (Apr 27)
    - Re: Port 25 - Blacklash Joe Maimon (Apr 27)
    - Re: Port 25 - Blacklash Valdis . Kletnieks (Apr 27)
    - Re: Port 25 - Blacklash Suresh Ramasubramanian (Apr 27)
    - Re: Port 25 - Blacklash Matthew S. Hallacy (Apr 27)
- RE: Port 25 - Blacklash Hannigan, Martin (Apr 26)
  - Re: Port 25 - Blacklash Florian Weimer (Apr 26)
- RE: Port 25 - Blacklash Hannigan, Martin (Apr 26)
- Re: Port 25 - Blacklash Dave Rand (Apr 26)
  - Re: Port 25 - Blacklash Valdis . Kletnieks (Apr 26)
- Re: Port 25 - Blacklash Dave Rand (Apr 26)