Maakt er nu iemand misbruik van mijn mailserver?
Heb voor de zekerheid SMTP maar uitgeschakeld.
Zie het volgende in Mailstation Log (zie attachment)
Als ik kijk in de maillog, zie ik het volgende:
Sep 17 07:56:58 opa postfix/smtpd[9429]: connect from 212-83-175-162.rev.poneytelecom.eu[212.83.175.162]
Sep 17 07:56:59 opa postfix/smtpd[9429]: DD8B4DB040B: client=212-83-175-162.rev.poneytelecom.eu[212.83.175.162], sasl_method=LOGIN, sasl_username=ronald
Sep 17 07:57:01 opa postfix/cleanup[9512]: DD8B4DB040B: hold: header Received: from User (212-83-175-162.rev.poneytelecom.eu [212.83.175.162])??(Authenticated sender: ronald)??by <mijndomein naam> (Postfix) with ESMTPA id DD8B4DB040B;??Thu, 17 Sep 2015 07:56:59 +0200 (CE from 212-83-175-162.rev.poneytelecom.eu[212.83.175.162]; from=<papa@ghede.ng> to=<tsegadorg@yahoo.com> proto=ESMTP helo=<User>
Sep 17 07:57:01 opa postfix/cleanup[9512]: DD8B4DB040B: message-id=<>
Sep 17 07:57:01 opa postfix/smtpd[9429]: disconnect from 212-83-175-162.rev.poneytelecom.eu[212.83.175.162]
Sep 17 07:57:02 opa MailScanner[19878]: New Batch: Scanning 1 messages, 5087 bytes
Sep 17 07:57:03 opa MailScanner[19878]: Virus and Content Scanning: Starting
Sep 17 07:57:03 opa MailScanner[19878]: Spam Checks: Found 1 spam messages
Sep 17 07:57:03 opa MailScanner[19878]: Requeue: DD8B4DB040B.A298C to 0B805DB0419
Sep 17 07:57:03 opa MailScanner[19878]: Uninfected: Delivered 1 messages
Sep 17 07:57:04 opa postfix/qmgr[19032]: 0B805DB0419: from=<papa@ghede.ng>, size=574, nrcpt=49 (queue active)
Sep 17 07:57:04 opa MailScanner[19878]: Deleted 1 messages from processing-database
Sep 17 07:57:04 opa MailScanner[19878]: MailScanner child dying of old age
Sep 17 07:57:04 opa MailScanner[9530]: MailScanner E-Mail Virus Scanner version 4.84.5 starting...
Sep 17 07:57:04 opa MailScanner[9530]: Reading configuration file /var/packages/MailServer/target/etc/MailScanner/MailScanner.conf
Sep 17 07:57:04 opa MailScanner[9530]: Reading configuration file /var/packages/MailServer/target/etc/MailScanner/conf.d/README
Sep 17 07:57:05 opa MailScanner[9530]: Read 869 hostnames from the phishing whitelist
Sep 17 07:57:05 opa MailScanner[9530]: Read 3531 hostnames from the phishing blacklists
Sep 17 07:57:05 opa postfix/smtp[9529]: Untrusted TLS connection established to mta7.am0.yahoodns.net[98.136.216.26]:25: TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)
Sep 17 07:57:05 opa postfix/smtp[9528]: 0B805DB0419: to=<rurssian1@pan.zer>, relay=none, delay=6.2, delays=4.4/0.1/1.6/0, dsn=5.4.4, status=bounced (unable to look up host pan.zer: Name or service not known)
Sep 17 07:57:06 opa postfix/smtp[9528]: 0B805DB0419: to=<rusesian1@pan.zer>, relay=none, delay=6.2, delays=4.4/0.1/1.6/0, dsn=5.4.4, status=bounced (unable to look up host pan.zer: Name or service not known)
Sep 17 07:57:06 opa postfix/smtp[9528]: 0B805DB0419: to=<rusisian1@pan.zer>, relay=none, delay=6.2, delays=4.4/0.1/1.6/0, dsn=5.4.4, status=bounced (unable to look up host pan.zer: Name or service not known)
Sep 17 07:57:06 opa postfix/smtp[9528]: 0B805DB0419: to=<ruspsian1@pan.zer>, relay=none, delay=6.2, delays=4.4/0.1/1.6/0, dsn=5.4.4, status=bounced (unable to look up host pan.zer: Name or service not known)
Sep 17 07:57:06 opa postfix/smtp[9528]: 0B805DB0419: to=<rusqsian1@pan.zer>, relay=none, delay=6.2, delays=4.4/0.1/1.6/0, dsn=5.4.4, status=bounced (unable to look up host pan.zer: Name or service not known)
Sep 17 07:57:06 opa postfix/smtp[9528]: 0B805DB0419: to=<russian10@pan.zer>, relay=none, delay=6.2, delays=4.4/0.1/1.6/0, dsn=5.4.4, status=bounced (unable to look up host pan.zer: Name or service not known)[/code
Topic: Kan ik zien met welke gebruikersnaam er ingelogd word? (gelezen 7263 keer)
Vergelijkbare onderwerpen (5)
02 september 2011, 20:33:05