* This is the vopmailbeta mailing list *
Excellent, thank you. TOS I got... I couldn't figure out that AUP acronym though :^) I guess we are growing to the point now that we do need these both, so that we have a leg to stand on if anything happens. Warren -----Original Message----- From: Jim Barstow [mailto:[EMAIL PROTECTED]] Sent: October 16, 2002 11:46 AM To: [EMAIL PROTECTED] Subject: [VOPmail Beta] stopping infected user * This is the vopmailbeta mailing list * AUP = Acceptable Use Policy TOS = Terms of Service Both might describe stuff about service... If you don't have an AUP, I suggest you get one and publish it on your homepage somewhere, then let all your customers know where it is and that they should read it. The AUP contains information on the acceptable uses of your service and usually what the penalties are for not adhering to it. Ours is somewhat out of date and needs an update, but can be viewed at http://www.1010internet.com/tos.asp Jim Barstow Internet Network Engineer Local Internet Services, Inc. PO Box 160 Ludington, MI 49431 (231)845-9797 ext. 109 -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Warren Sampson Sent: Wednesday, October 16, 2002 11:38 AM To: [EMAIL PROTECTED] Subject: [VOPmail Beta] stopping infected user * This is the vopmailbeta mailing list * OK, I thinking that to... What's an AUP? Warren -----Original Message----- From: Jim Barstow [mailto:[EMAIL PROTECTED]] Sent: October 16, 2002 11:34 AM To: [EMAIL PROTECTED] Subject: [VOPmail Beta] stopping infected user * This is the vopmailbeta mailing list * Sounds like a definite question of your AUP. In our AUP, we have specific information regarding users that knowingly do not take steps to resolve email viruses if they are infected. We have suspended numerous accounts that have refused to resolve the issue. They very quickly solve the issue at which time we re-instate their account. Jim Barstow Internet Network Engineer Local Internet Services, Inc. PO Box 160 Ludington, MI 49431 (231)845-9797 ext. 109 -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Warren Sampson Sent: Wednesday, October 16, 2002 11:30 AM To: [EMAIL PROTECTED] Subject: [VOPmail Beta] stopping infected user * This is the vopmailbeta mailing list * Hi, I have a customer that we are hosting e-mail for. This is the second time this has happened with this particular user (happened last year on our old mail system). I notice on Sunday that e-mail with a mailfrom of the users account, was attempting to send to various different users at about 1 minute intervals. At first I thought the customer didn't have the "authenticate" for SMTP. Anyway, after seeing some e-mails addressed to "unlikely" receipients (various colorful adjectives), I realized that the user must be infected again. Luckily, we have the requirement of authentication. ---- SMTPRS log entry made at 10/14/2002 00:14:16 SMTP command failed when talking to 142.154.115.21: >>> RCPT TO:<[EMAIL PROTECTED]> <<< 501 This system is not configured to relay mail from <[EMAIL PROTECTED]> to <[EMAIL PROTECTED]> for 142.154.115.21 ---- SMTPRS log entry made at 10/14/2002 00:16:41 SMTP command failed when talking to 142.154.115.21: >>> RCPT TO:<[EMAIL PROTECTED]> <<< 501 This system is not configured to relay mail from <[EMAIL PROTECTED]> to <[EMAIL PROTECTED]> for 142.154.115.21 ---- SMTPRS log entry made at 10/14/2002 00:18:25 SMTP command failed when talking to 142.154.115.21: >>> RCPT TO:<[EMAIL PROTECTED]> <<< 501 This system is not configured to relay mail from <[EMAIL PROTECTED]> to <[EMAIL PROTECTED]> for 142.154.115.21 I tried to help over the phone with an antivirus update (the user had it turned off and last definitions were from October last year). Anyway... the customer is not concerned because the e-mail is working for them and they seem to not care about fixing their system. What can I do to block, stop, etc? The customer is using a dial-up so I can block the IP being used now, but it's gonna change. I very worried that if some gets through, our server will get BL'd. Any ideas? Warren (Sam) Sampson MCSE, CCA KMP Designs Inc. 7145 West Credit Ave Suite 101, Building 2 Mississauga, ON L5N 6J7 Phone: (905)812-5635 Fax: (905)812-5636 E-mail: [EMAIL PROTECTED] ** To leave this list, send an email to [EMAIL PROTECTED] and put the word "LEAVE" in the BODY of the email. ** To leave this list, send an email to [EMAIL PROTECTED] and put the word "LEAVE" in the BODY of the email. ** To leave this list, send an email to [EMAIL PROTECTED] and put the word "LEAVE" in the BODY of the email. ** To leave this list, send an email to [EMAIL PROTECTED] and put the word "LEAVE" in the BODY of the email. ** To leave this list, send an email to [EMAIL PROTECTED] and put the word "LEAVE" in the BODY of the email.
