:: On Sun, 23 Feb 2014 19:38:38 +0400 :: <titc.713176f2cf.offd9ec82f.07a8fced-onc1257c88.00556a78-44257c88.0055f...@thockar.com> :: Thomas Eckardt <thomas.ecka...@thockar.com> wrote:
> >Feb-21-14 17:44:09 [Worker_2] [TLS-out] 116.203.191.142 [SMTP Reply] > >235 > 2.7.0 Authentication successful [...] > The connected server (85.214.251.232:25) has replied '235 2.7.0 > Authentication successful' - why should assp assume that this is > wrong? Also, and since we're at it, sounds like there has been an increase in email credetials bruteforcing attempts; if you check ASSP (or mailserver) logs you may notice quite a number of logon failures and most of them coming from flocks of different IPs (also check POP3 and IMAP on mailserver logs); sounds like botmasters are using lists of email addresses scraped on the 'net to try finding weak passwords and then abuse the accounts to pump out junk ------------------------------------------------------------------------------ Flow-based real-time traffic analytics software. Cisco certified tool. Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer Customize your own dashboards, set traffic alerts and generate reports. Network behavioral analysis & security monitoring. All-in-one tool. http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk _______________________________________________ Assp-test mailing list Assp-test@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-test
