North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Port 25 - Blacklash

  • From: Valdis.Kletnieks
  • Date: Wed Apr 27 12:49:43 2005

On Wed, 27 Apr 2005 14:31:42 +0530, Suresh Ramasubramanian said:

> But with smtp auth, the infected user is stamped in the email headers,
> and all over my MTA logs, when a bot that hijacks his PC starts
> spamming.

Of course, the same ISPs that will use the ID in the email headers are,
by and large, the same ones that already know how to match the IP in the
headers to their radius/tacacs/etc logs....

Attachment: pgp00028.pgp
Description: PGP signature