On Friday 28 March 2008 21:14:25 mouss wrote:
> >> There are a number of things you can do to harden your security. You
> >> could set up an additional user account with nologin for email so if the
> >> username/password does get compromised it's limited to purely email. You
> >> could run imap ser
Anne Wilson wrote:
On Friday 28 March 2008 11:06:06 Ned Slider wrote:
Anne Wilson wrote:
I have port 143 open so that I can get my mail when away from home.
Occasionally, though, my router reports things like
Thu, 2008-03-27 02:00:11 - TCP Packet - Source:200.122.134.9,3821
Destination
On Friday 28 March 2008 16:12:24 Bill Campbell wrote:
> On Fri, Mar 28, 2008, Anne Wilson wrote:
> >I have port 143 open so that I can get my mail when away from home.
> >Occasionally, though, my router reports things like
>
> You should be using secure IMAP on port 933, not port 143 where
> everyt
On Friday 28 March 2008 11:06:06 Ned Slider wrote:
> Anne Wilson wrote:
> > I have port 143 open so that I can get my mail when away from home.
> > Occasionally, though, my router reports things like
> >
> > Thu, 2008-03-27 02:00:11 - TCP Packet - Source:200.122.134.9,3821
> > Destination:88.97.17.
On Friday 28 March 2008 13:31:16 Kai Schaetzl wrote:
> Anne Wilson wrote on Fri, 28 Mar 2008 10:50:08 +:
> > These, it seems, are outgoing packets.
>
> No, they are incoming. They have various sources and one destination and I
> suppose that's your server's IP. So they are incoming.
>
> > open
On Friday 28 March 2008 11:14:39 Ned Slider wrote:
> Anne Wilson wrote:
> > These, it seems, are outgoing packets. Why, then, have they got those
> > source addresses? Is someone managing to bounce packets through my mail
> > server to hide their tracks?
>
> Presumably those logs are for incoming
On Fri, Mar 28, 2008, Anne Wilson wrote:
>I have port 143 open so that I can get my mail when away from home.
>Occasionally, though, my router reports things like
You should be using secure IMAP on port 933, not port 143 where
everything is sent in clear text. I don't know about other IMAP
serv
Anne Wilson wrote on Fri, 28 Mar 2008 10:50:08 +:
> These, it seems, are outgoing packets.
No, they are incoming. They have various sources and one destination and I
suppose that's your server's IP. So they are incoming.
> open relay,
Relaying is SMTP. And you will see all sorts of connect
Anne Wilson wrote:
These, it seems, are outgoing packets. Why, then, have they got those source
addresses? Is someone managing to bounce packets through my mail server to
hide their tracks?
Presumably those logs are for incoming connections in your router (looks
like a netgear log to me). T
Anne Wilson wrote:
I have port 143 open so that I can get my mail when away from home.
Occasionally, though, my router reports things like
Thu, 2008-03-27 02:00:11 - TCP Packet - Source:200.122.134.9,3821
Destination:88.97.17.41,143 - [IMAP rule match]
Thu, 2008-03-27 05:39:49 - TCP Packet
These, it seems, are outgoing packets. Why, then, have they got those source
addresses? Is someone managing to bounce packets through my mail server to
hide their tracks?
I've never seen many of these, just the occasional one. Sometimes they seem
to relate to an ntp source. Often they se
On Friday 28 March 2008 10:31:19 Kai Schaetzl wrote:
> Anne Wilson wrote on Fri, 28 Mar 2008 09:23:30 +:
> > Looking at those addresses in whois, I don't see any good reason for
> > these,
>
> I don't know what [IMAP rule match] means, haven't ever seen this. But it
> should be clear that if yo
Anne Wilson wrote on Fri, 28 Mar 2008 09:23:30 +:
> Looking at those addresses in whois, I don't see any good reason for these,
I don't know what [IMAP rule match] means, haven't ever seen this. But it
should be clear that if you have well-known ports open to the world that these
attract br
I have port 143 open so that I can get my mail when away from home.
Occasionally, though, my router reports things like
Thu, 2008-03-27 02:00:11 - TCP Packet - Source:200.122.134.9,3821
Destination:88.97.17.41,143 - [IMAP rule match]
Thu, 2008-03-27 05:39:49 - TCP Packet - Source:140.127.181.14
14 matches
Mail list logo
