Lorenzo Prince wrote: > I am running Postfix on RH9 and may be having a couple of > problems. I am basically using the out-of-the-box config > file, except I modified the inet_interfaces option to include > $myhostname so I can receive messages at my domain and > localhost so I can send messages using my favorite mailers. > One problem I'm having is that I keep getting messages > about business transaction scams from Nigeria, egype and > other countries.
We all receive these types of spam. > I figured this was just span and just deleted > those messages. If they make it through spamassassin, then I delete them too. > Then I ran across another problem just a few > days ago. Seems I sent a message that I really didn't > send to an email address that I had never heard of. I > received an email messge warning me that the message I sent > (which I didn't actually send) contained a virus and that the > virus was removed. It seems that someone is using either > my email address or my MTA to send viruses to people on the > internet. I telnetted to relay-test.mail-abuse.org and it > said it appeared relaying was denied by my MTA. Is there a > way to tell if someone is using my MTA to send viruses > tricking it into thinking it's me sending the message? Id it > even possible for someone to do this? Or is someone just > using my email address to trick the person receiving the mail > into thinking that it is coming from me? In either case, > how can I stop such activity? You really can't stop a virus from forging your e-mail address. Most viruses use the infected systems address book to set a random from address. But I would check the following to insure your system did not actually send this e-mail... 1) Check your maillog file. 2) If this system is also a web server, check the httpd logfiles for e-mails being sent through cgi scripts, etc... i.e. formmail 3) If you have a windows system on your private lan behind this system (i.e. your linux system is being used as a firewall), insure that the windows system did not get infected with a virus that installed its own MTA. Finally, its probably just a virus, forging the from/reply-to address. Could even be someone you know who has your e-mail address in their address book. > Also I need to find out how can route mail through spamassassin > in order to cut down on some of the business scams and other > spam I receive daily. Can't help you here. I run sendmail/spamassassin, not postfix. Steeve Cowles -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
