looking for a spammer/virii/malware .... on my system
alexus
alexus at gmail.com
Thu Aug 18 17:02:00 UTC 2011
right, but what seems to be (according to headers) someone makes a
connection from my box to theirs over the web (80/443) so i'm going
see if I can see anything, if not then i'll keep it blocked until I
figure out something else to find who does that...
On Thu, Aug 18, 2011 at 12:42 PM, Chuck Swiger <cswiger at mac.com> wrote:
> On Aug 18, 2011, at 9:36 AM, alexus wrote:
>> su-3.2# tcpdump -nnAvvvw webmail.west.cox.net 'dst host 68.6.19.1 and
>> (dst port 80 or 443)'
>> tcpdump: listening on bce0, link-type EN10MB (Ethernet), capture size 96 bytes
>> Got 0
>>
>> let's see what I capture...
>
> You're going to capture traffic of people reading webmail from Cox.net.
>
> However, as much as that might be interesting, it is not useful
> for detecting outbound spam from a machine or network....
>
> Regards,
> --
> -Chuck
>
>
--
http://alexus.org/
More information about the freebsd-questions
mailing list