Hi Yves,
On Sat, Jul 02, 2011 at 10:06:17AM +0200, Yves Goergen wrote:
> >> Doesn't seem to work. It's a false positive again. And Botnet recognises
> >> the incoming IPv6 address as some IPv4 address and reports that one.
> >
> > That doesn't look right - unless your munging has really messed it
interesting.
the ipv6 address is correct, spock.dilkie.com was the source of the email.
however, the quoted ipv4 address, 216.191.234.70 is my employer's mail
gateway (Mitel), and I suspect the script grabbed the ip address I used
to send the test message to my server that was relayed to Yves. (i
On 30.06.2011 13:06 CE(S)T, Matthew Newton wrote:
> On Wed, Jun 29, 2011 at 09:59:52PM +0200, Yves Goergen wrote:
>>> Received: from sp***ck.di***ie.com ([2001:***::40])
>>> by do***rd.de with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32)
>>> (Exim 4.71)
>>> (envelope-from )
>>> id 1Q
Hi,
On Thu, Jun 30, 2011 at 04:07:57PM +0200, Mark Martinec wrote:
> (I'm Cc'ing to Matthew in case he wants to check how it turns out
> on his mailer).
Arrived over IPv6 fine here, and did not hit (patched) BOTNET.
Cheers
Matthew
--
Matthew Newton, Ph.D.
Systems Architect (UNIX and Networ
Yves,
> > Btw, this Cc should be arriving over IPv6 too...
> Sorry, it's here indeed. And Botnet has caught it again. :(
>
> Some of the headers:
> > Received: from mail.ijs.si ([2001:1470:ff80::25])
> > by dotforward.de with esmtp (Exim 4.71)
> > (envelope-from )
> > id 1Qc3nH-
On Thu, Jun 30, 2011 at 12:06:06PM +0100, Matthew Newton wrote:
> > Doesn't seem to work. It's a false positive again. And Botnet recognises
> > the incoming IPv6 address as some IPv4 address and reports that one.
>
> That doesn't look right - unless your munging has really messed it
> up. BOTNET
Hi Yves,
On Wed, Jun 29, 2011 at 09:03:52PM +0200, Yves Goergen wrote:
> I was looking for an IPv6 fix for Botnet before but nobody (including
> me) was able to do it. I have now looked at your solution and to my
> Perl-unexperienced eyes, it looks promising.
>
> I have installed it on my server
On Thu, 30 Jun 2011 09:05:20 +0200, Yves Goergen wrote:
Is somebody else interested in testing this Botnet version and have
me
sending a message to him?
maybe me ?
does my ipv6 have reverse ptr dns ?
btw subscribe to isc.org mailllists (bind, dhcp...) thay are on ipv6
On 30.06.2011 01:03 CE(S)T, Mark Martinec wrote:
> Btw, this Cc should be arriving over IPv6 too...
Mark,
I didn't receive your direct copy until now. And the list message
arrived through IPv4 (mail.apache.org).
But I did receive a message through IPv6 from somebody else, and this
time Botnet di
On Wednesday June 29 2011 21:59:52 Yves Goergen wrote:
> On 29.06.2011 21:03 CE(S)T, Yves Goergen wrote:
> > Could somebody please just send me a message from an IPv6
> > mail server to my address? (Preferably from a host that should not be
> > caught by Botnet...)
> [...]
> Doesn't seem to work. I
On 29.06.2011 21:03 CE(S)T, Yves Goergen wrote:
> Could somebody please just send me a message from an IPv6
> mail server to my address? (Preferably from a host that should not be
> caught by Botnet...)
Here's a mail I just received: (thank you to the sender)
> Received: from sp***ck.di***ie.com
On 13.06.2011 13:51 CE(S)T, Matthew Newton wrote:
>> Can you post the patched Botnet.pm and Botnet.cf, that would be cool.
>
> I've put the patched Botnet.pm here:
>
> http://www.le.ac.uk/users/mcn4/botnet/
Hi,
I was looking for an IPv6 fix for Botnet before but nobody (including
me) was able t
On 6/13/2011 7:51 AM, Matthew Newton wrote:
I've therefore hacked together the following patch to Botnet.pm
(0.8). It should fix the main issue that BOTNET does not do any
lookups for IP addresses that look like IPv6 addresses. It
I've put the patched Botnet.pm here:
http://www.le.ac.uk/
13.6.2011 14:51, Matthew Newton kirjoitti:
> Hi,
>
> On Sat, Jun 11, 2011 at 02:44:19AM +0300, Jari Fredriksson wrote:
>> 11.6.2011 0:41, Matthew Newton kirjoitti:
>>>
>>> I've therefore hacked together the following patch to Botnet.pm
>>> (0.8). It should fix the main issue that BOTNET does not d
Hi,
On Sat, Jun 11, 2011 at 02:44:19AM +0300, Jari Fredriksson wrote:
> 11.6.2011 0:41, Matthew Newton kirjoitti:
> >
> > I've therefore hacked together the following patch to Botnet.pm
> > (0.8). It should fix the main issue that BOTNET does not do any
> > lookups for IP addresses that look
11.6.2011 0:41, Matthew Newton kirjoitti:
>
> I've therefore hacked together the following patch to Botnet.pm
> (0.8). It should fix the main issue that BOTNET does not do any
> lookups for IP addresses that look like IPv6 addresses. It
Hi! I really need that, but the patch did not work, ot
Hi,
I've noticed for a while on my home mail server that BOTNET was
scoring for every mail coming over IPv6. Having just use the
excuse of World IPv6 day to enable it on the servers here, too, I
needed to fix that or remove the test.
I've therefore hacked together the following patch to Botnet.pm
17 matches
Mail list logo
