From: Bjorn Fahller (pflfahller.se)
Date: Mon Aug 20 2007 - 09:52:37 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Monday 20 August 2007 16:42, Adam D wrote:

> I have noticed a very large (over 2-5.5k+...) emails in one day, since
> Friday, being sent to the same, SPAMer created, non existent account.
> The logs are showing the SPAM/Virus being rejected for these reasons:
>
> Helo command rejected: Host not found; from=<> from=<>
> to=<jicdomainfeldomain.tld>
> Client host rejected: cannot find your hostname [...] from=<>
> to=<jicdomainfeldomain.tld>

I had a very similar thing here a few weeks ago. Mail were sent to
<built???domain.tld>, (where ??? varied between messages.) The most frequent
sender IP address made something like 700 tries/day. However, it turned out
that the number of IP addresses wasn't that large - 20-something I think.
Since the number of src IP's was relatively small, I blocked them in the
firewall. A week later at all died out.
   _
/Bjorn

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]