On Saturday 08 April 2006 12:10, M A wrote: >Details thats all the ISP gave me, > >Surely there must be a way to detect this is happening, or the source > of it, > >I have since removed all my secondary IP's, > >Does IPtables need to have rules for all my secondary Ips? > Yippers!
>On 4/8/06, Roberto C. Sanchez <[EMAIL PROTECTED]> wrote: >> M A wrote: >> > Hi there Got this from my ISP the other day >> > >> > We have been forced to take your server off line, since your >> > server is performing phishing from your secondary IP address >> > xxx.xxx.xxx.224. >> > >> > that IP address was one my secondary IP's, using debian sarge, >> > have iptables firewall, >> > using qmail as the mail server .. >> > >> > How do i fix this, or detect that is happening .. >> >> Without more detail, I would say to format and reinstall. Once a >> machine has been compromised, you can never be sure it is completely >> clean. >> >> -Roberto >> >> -- >> Roberto C. Sanchez >> http://familiasanchez.net/~roberto -- Cheers, Gene People having trouble with vz bouncing email to me should add the word 'online' between the 'verizon', and the dot which bypasses vz's stupid bounce rules. I do use spamassassin too. :-) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2006 by Maurice Eugene Heskett, all rights reserved. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
