[plug] smtp madness.

[Shayne O'Neill]

inetd   10079 root   14u  IPv4 2521467       TCP *:smtp (LISTEN)
exim    10080 root    0u  IPv4 2521472       TCP
yourguild.murdoch.edu.au:smtp->yhaaus.lnk.telstra.net:8800 (ESTABLISHED)
exim    10080 root    1u  IPv4 2521472       TCP
yourguild.murdoch.edu.au:smtp->yhaaus.lnk.telstra.net:8800 (ESTABLISHED)

I've added the above dns AND its ip into hosts.deny
(and restarted inetd and exim (well, at least using /etc/init.d) and its
still there. frusturating.

what would be the iptables equivelant for 2.2 kernel. its ipchains or
something yeah?

--
"the vast majority of Iraqis want to live in a peaceful, free world. And
we will find these people and we will bring them to justice."
George W. Bush, Washington, D.C., Oct. 27, 2003

Shayne O'Neill. http://www.perthimc.asn.au

On Tue, 22 Jun 2004, Russell Steicke wrote:

> On Tue, Jun 22, 2004 at 05:09:53PM +1000, Martin wrote:
> > $quoted_author = "Shayne O'Neill" ;
> > >
> > > The problem of course is that if this is the case then the ip block wont
> > > work.
> > >
> > > tcp        0      1 yourguild.murdoch.:2825 yhaaus.lnk.telstra:auth
> > > SYN_SENT
> > > tcp        0      0 yourguild.murdoch.:smtp yhaaus.lnk.telstra:8342
> > > ESTABLISHED
> > > tcp        0      0 yourguild.murdoch.:smtp yhaaus.lnk.telstra:8314
> > > TIME_WAIT
> >
> > i imagine the reverse dns is yhaaus.lnk.telstra.net but if you run
> > netstat with the -n flag it will give you IP address.
>
> Yes, netstat is truncating the host name, and there doesn't seem to be a
> way to make its output wider.  But lsof doesn't do that:
>
>   lsof -i :25
>
> to get a list of smtp connections.
>
>
>
> --
> Russell Steicke
>
> -- Fortune says:
>   If I could drop dead right now, I'd be the happiest man alive!
>   -Samuel Goldwyn
> _______________________________________________
> PLUG discussion list: plug at plug.linux.org.au
> http://mail.plug.linux.org.au/cgi-bin/mailman/listinfo/plug
> Committee e-mail: committee at plug.linux.org.au
>