On 19/10/06, Stuart Gall <[EMAIL PROTECTED]> wrote:
> > |http://mail.oldartero.com:/cgi-bin/put
>
> WARNING!!
> This is not just a URL as nigel points out
> Look it is a pipe and a URL to a cgi script. This is clearly an
> attempt to break something and gain some sort of unauthorised access.
>
On 19 Oct 2006, at 17:00, B. Cook wrote:
> Hello,
>
> I've started seeing a lot of this, and I'm not sure why they are being
> terminated at the helo/ehlo check as I try and do everything at
> rcpt time..
>
> the 84.174.86.75 host is listed in spamhaus (xbl-sbl) and would get
> caught in a diff
On 19 Oct 2006, at 15:00, B. Cook wrote:
> the 84.174.86.75 host is listed in spamhaus (xbl-sbl) and would get
> caught in a different part of the config and be denied by that.. but
> instead b/c they are being dropped at helo, they have to get caught in
> the ratelimit checks and denied that way.
Hello,
I've started seeing a lot of this, and I'm not sure why they are being
terminated at the helo/ehlo check as I try and do everything at rcpt time..
the 84.174.86.75 host is listed in spamhaus (xbl-sbl) and would get
caught in a different part of the config and be denied by that.. but
ins