From: SourceForge.net <no...@so...> - 2005-03-21 20:44:40
|
Bugs item #1167855, was opened at 2005-03-21 12:44 Message generated for change (Tracker Item Submitted) made by Item Submitter You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=111118&aid=1167855&group_id=11118 Category: redhat-specific Group: version 3.0 Status: Open Resolution: None Priority: 5 Submitted By: Nobody/Anonymous (nobody) Assigned to: Nobody/Anonymous (nobody) Summary: Privoxy exploit to relay E-mail? Initial Comment: - Privoxy port 3128 was (by mistake) open to world - we noticed privoxy was used to relay E-mail - Logfile -> Request: xxx.xxx.xxx.xxx:25/ - config say "-limit-connect" - manual test on open relay say HTTP/1.0 403 Connection not allowable X-Hint: If you read this message interactively, then you know why this happens ,-) - port 443 is handle by Apache - Logfile report a LOT of "Error: can't fork: Cannot allocate memory", so I suppose privoxy was submitted to stress - Event occured last week but the port was open for a very very long time. Hoping the problem is not new to you or that I missed a config detail. you can contact me (jmp at safe.ca) for further detail and logs ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=111118&aid=1167855&group_id=11118 |