My email system got hacked... - Page 2

Feek · 07-02-2007, 19:25

Came home to find 320 emails showing waiting for me from webmaster@[oneofmydomains.com]

Checked and there was someone connected to my MDaemon pumping message after message into my system spoofing the from address as the webmaster one and because that was aliased to my main address it was accepted.

I think that the only reason it happened was that although the address was aliased to my main one, I didn't have the [oneofmydomains.com] actually specified as a secondary domain within MDaemon.

I added it, removed the alias and it appears to have stopped - There are still connections trying to come in that are being refused by Tarpit so I'm hoping that once whoever was doing it realises that the hole has been patched that they'll stop.

Luckily I don't think anything got out. I'm not blacklisted anywhere which would happen fairly quickly if it had done.

Bastards

07-02-2007, 19:25	#1
Feek ex SAS Join Date: Jun 2006 Location: JO01ou Posts: 10,062	My email system got hacked... Came home to find 320 emails showing waiting for me from webmaster@[oneofmydomains.com] Checked and there was someone connected to my MDaemon pumping message after message into my system spoofing the from address as the webmaster one and because that was aliased to my main address it was accepted. I think that the only reason it happened was that although the address was aliased to my main one, I didn't have the [oneofmydomains.com] actually specified as a secondary domain within MDaemon. I added it, removed the alias and it appears to have stopped - There are still connections trying to come in that are being refused by Tarpit so I'm hoping that once whoever was doing it realises that the hole has been patched that they'll stop. Luckily I don't think anything got out. I'm not blacklisted anywhere which would happen fairly quickly if it had done. Bastards __________________