I recently got a message from someone that went something like this:
"Hello, it seems that one of your customers is having trouble sending
mail. I think I could offer a suggestion. Let's take a look at the way you
have your MX records set up.."
The sender then proceeded to give detailed information almost as though
he'd catted the zone file on our DNS server. It included what the MX
records were for a given systems and which server were CNAMEd to which.
The advice was helpfull and indeed correct solving the problem shortly
thereafter. I, however, had no idea you could get that much information on
a system remotely. I mailed this person back and have gotten no response.
I can't help but be a little suspicious of this although the idea of a
benevolent cracker out there is an amusing thought. =:) I'm sure there's a
legitimate way to get information like this, but outside of nslookup and
whois I don't know how our helper friend could have gotten so much
information about our systems.
...so here's my question: How'd he do it? =:)
Brad Smith, Walnut Creek, Ca.
<*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*>
"Unix is life. The rest is (c) Microsoft, Inc."
<*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*><*>
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
