date:20170419

[MDaemon-L] MDaemon Patch untuk Windows OS exploit SWIFT attack (EasyBee Exploit)

2017-04-19 Terurut Topik Syafril Hermansyah

Hallo,


MDaemon publish Patch untuk mengatasi EasyBee Exploit.

http://www.altn.com/Support/#EasyBeeExploitNotice

April 19, 2017 - The recent release of hacking tools by the Shadow Group
contains a number of files which can be used to exploit many different
software products. Included in this list was the file, EasyBee, which
could be used to potentially exploit MDaemon.


Alt-N has reviewed the MDaemon software and found the following:

Older, non-supported versions (v. 9.x – 11.x) are vulnerable to attack

Versions 12.x and 13.0 are not vulnerable to the EasyBee executable, but
may be vulnerable to the exploit used by EasyBee

Versions 13.5 and newer are not vulnerable


If you are using MDaemon v 9.x – v 13.0, Alt-N recommends customers take
the following action:

Upgrade all older, non-supported versions of MDaemon to the newest, most
secure version 17

http://www.altn.com/Downloads/MDaemon-Mail-Server-Free-Trial/

If you do not upgrade versions 12.x-13.0, customers can download the
exploit fix below

MD 13.0.8
http://files.altn.com/mdaemon/release/WebAdmin13.0-bug18663.zip

MD 12.0.6
http://files.altn.com/mdaemon/release/WebAdmin12.5-bug18663.zip

MD 12.5.9
http://files.altn.com/mdaemon/release/WebAdmin12.0-bug18663.zip

Note:The new DLLs only work with the latest versions of MDaemon 12.0,
12.5, and 13.0. If a customer is running MDaemon 12.0.1 they must first
upgrade to 12.0.6 before using the new dll. 12.5 must be upgraded to
12.5.9 and 13.0 must be upgraded to 13.0.8

You can learn more about the Shadow Brokers release by reading this article.

https://www.bleepingcomputer.com/news/security/shadow-brokers-release-new-files-revealing-windows-exploits-swift-attacks/




-- 
syafril
---
Syafril Hermansyah
MDaemon-L Moderators, MDaemon 17.0.1-64 Beta A, SP 5.1.0-64
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.

Mengeritik jauh lebih mudah daripada berbuat yang benar
-- Benyamin Disraeli



signature.asc
Description: OpenPGP digital signature

[MDaemon-L] Email ditolak

2017-04-19 Terurut Topik Syafril Hermansyah

On 20/04/17 11:03, Agus Tarpindo wrote:
> Pak mohon bantu Analisa, ini user saya ditolak oleh penerima karena apa ya?


> [071184] --> RCPT To:
> 
>   [071184] <-- 550 #5.1.0 Address rejected.


Recipient addres tidak terdaftar sebagai local user.

-- 
syafril
---
Syafril Hermansyah
MDaemon-L Moderators, MDaemon 17.0.1-64 Beta A, SP 5.1.0-64
Harap tidak cc: atau kirim ke private mail untuk masalah MDaemon.

Education is the kindling of a flame, not the filling of a vessel.
--- Socrates


-- 
--MDaemon-L--
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server.

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.co.id
Henti Langgan: Kirim mail ke mdaemon-l-unsubscr...@dutaint.com
Versi terakhir MD 17.0, SP 5.1.0, OC 4.0.1, SG 4.5.0

[MDaemon-L] Email ditolak

2017-04-19 Terurut Topik Agus Tarpindo

YTH Pak Syafril

 

Pak mohon bantu Analisa, ini user saya ditolak oleh penerima karena apa ya?

 



=  Session Transcript  =



 

  [071184] Session 071184; child 0001

  [071184] Parsing message 

  [071184] *  From: k...@os-selnajaya.com  

  [071184] *  To: s-mor...@hirata.co.jp  

  [071184] *  Subject: Sheryl? ?

  [071184] *  Size (bytes): 72536

  [071184] *  Message-ID: <050901d2b989$0ef856e0$2ce904a0$@os-selnajaya.com
 >

  [071184] *  This message is 0 minutes old; it has 15 minutes left in this
queue

  [071184] Attempting SMTP connection to [hirata.co.jp]

  [071184] Resolving MX records for [hirata.co.jp] (DNS Server: 8.8.8.8)...

  [071184] *  P=010 S=000 D=hirata.co.jp TTL=(459) MX=[mailgw3.oneoffice.jp]

  [071184] Attempting SMTP connection to [mailgw3.oneoffice.jp:25]

  [071184] Resolving A record for [mailgw3.oneoffice.jp] (DNS Server:
8.8.8.8)...

  [071184] *  D=mailgw3.oneoffice.jp TTL=(1) A=[27.121.52.207]

  [071184] Attempting SMTP connection to [27.121.52.207:25]

  [071184] Waiting for socket connection...

  [071184] *  Connection established (202.78.202.4:64606 ->
27.121.52.207:25)

  [071184] Waiting for protocol to start...

  [071184] <-- 220 mailgw3.oneoffice.jp ESMTP

  [071184] --> EHLO mail.os-selnajaya.com

  [071184] <-- 250-mailgw3.oneoffice.jp

  [071184] <-- 250-8BITMIME

  [071184] <-- 250-SIZE 52428800

  [071184] <-- 250 STARTTLS

  [071184] --> STARTTLS

  [071184] <-- 220 Go ahead with TLS

  [071184] SSL negotiation successful (TLS 1.0, 2048 bit key exchange, 128
bit AES encryption)

  [071184] --> EHLO mail.os-selnajaya.com

  [071184] <-- 250-mailgw3.oneoffice.jp

  [071184] <-- 250-8BITMIME

  [071184] <-- 250 SIZE 52428800

  [071184] --> MAIL From:mailto:k...@os-selnajaya.com> > SIZE=72536

  [071184] <-- 250 sender mailto:k...@os-selnajaya.com> > ok

  [071184] --> RCPT To:mailto:s-mor...@hirata.co.jp>
>

  [071184] <-- 550 #5.1.0 Address rejected.

  [071184] --> QUIT

 



=End Transcript=



 

 

Thu 2017-04-20 10:48:34.365: 01: --

Thu 2017-04-20 10:48:34.997: 05: [071184] Session 071184; child 0001

Thu 2017-04-20 10:48:34.997: 01: [071184] Parsing message


Thu 2017-04-20 10:48:34.999: 01: [071184] *  From: k...@os-selnajaya.com

Thu 2017-04-20 10:48:34.999: 01: [071184] *  To: s-mor...@hirata.co.jp

Thu 2017-04-20 10:48:34.999: 01: [071184] *  Subject: Sheryl? ?

Thu 2017-04-20 10:48:34.999: 01: [071184] *  Size (bytes): 72536

Thu 2017-04-20 10:48:34.999: 01: [071184] *  Message-ID:
<050901d2b989$0ef856e0$2ce904a0$@os-selnajaya.com>

Thu 2017-04-20 10:48:35.000: 01: [071184] *  This message is 0 minutes old;
it has 15 minutes left in this queue

Thu 2017-04-20 10:48:35.000: 05: [071184] Attempting SMTP connection to
[hirata.co.jp]

Thu 2017-04-20 10:48:35.002: 05: [071184] Resolving MX records for
[hirata.co.jp] (DNS Server: 8.8.8.8)...

Thu 2017-04-20 10:48:35.021: 05: [071184] *  P=010 S=000 D=hirata.co.jp
TTL=(459) MX=[mailgw3.oneoffice.jp]

Thu 2017-04-20 10:48:35.021: 05: [071184] Attempting SMTP connection to
[mailgw3.oneoffice.jp:25]

Thu 2017-04-20 10:48:35.021: 05: [071184] Resolving A record for
[mailgw3.oneoffice.jp] (DNS Server: 8.8.8.8)...

Thu 2017-04-20 10:48:35.039: 05: [071184] *  D=mailgw3.oneoffice.jp TTL=(1)
A=[27.121.52.207]

Thu 2017-04-20 10:48:35.039: 05: [071184] Attempting SMTP connection to
[27.121.52.207:25]

Thu 2017-04-20 10:48:35.040: 05: [071184] Waiting for socket connection...

Thu 2017-04-20 10:48:35.131: 05: [071184] *  Connection established
(202.78.202.4:64606 -> 27.121.52.207:25)

Thu 2017-04-20 10:48:35.131: 05: [071184] Waiting for protocol to start...

Thu 2017-04-20 10:48:35.227: 02: [071184] <-- 220 mailgw3.oneoffice.jp ESMTP

Thu 2017-04-20 10:48:35.228: 03: [071184] --> EHLO mail.os-selnajaya.com

Thu 2017-04-20 10:48:35.321: 02: [071184] <-- 250-mailgw3.oneoffice.jp

Thu 2017-04-20 10:48:35.321: 02: [071184] <-- 250-8BITMIME

Thu 2017-04-20 10:48:35.321: 02: [071184] <-- 250-SIZE 52428800

Thu 2017-04-20 10:48:35.321: 02: [071184] <-- 250 STARTTLS

Thu 2017-04-20 10:48:35.322: 03: [071184] --> STARTTLS

Thu 2017-04-20 10:48:35.417: 02: [071184] <-- 220 Go ahead with TLS

Thu 2017-04-20 10:48:35.626: 05: [071184] SSL negotiation successful (TLS
1.0, 2048 bit key exchange, 128 bit AES encryption)

Thu 2017-04-20 10:48:35.626: 03: [071184] --> EHLO mail.os-selnajaya.com

Thu 2017-04-20 10:48:35.719: 02: [071184] <-- 250-mailgw3.oneoffice.jp

Thu 2017-04-20 10:48:35.719: 02: [071184] <-- 250-8BITMIME

Thu 2017-04-20 10:48:35.719: 02: [071184] <-- 250 SIZE 52428800

Thu 2017-04-20 10:48:35.719: 03: [071184] --> MAIL
From: SIZE=72536

Thu 2017-04-20 10:48:35.811: 02: [071184] <-- 250 sender
 ok

Thu 2017-04-20 10:48:35.811: 03: [071184] --> RCPT
To:

Thu 2017-04-20 10:

[MDaemon-L] MDaemon Patch untuk Windows OS exploit SWIFT attack (EasyBee Exploit)

[MDaemon-L] Email ditolak

[MDaemon-L] Email ditolak

3 matches

Site Navigation

Mail list logo

Footer information