真奇怪!! 被當成跳板了!!!!
我已經將打勾了, 也就是關閉了"開放轉信"功能, 還是發現被轉信成功, 真是不解, 況且是經由OUTLOOK我的測試帳號轉寄的, 在我OUTLOOK沒留下任何記錄, 以下是貼過來的LOG, 請注意LOG時間!!<br><br><span style='color:red'>SMTP(in)</span><br>Mon 2005-01-31 08:51:04: Session 1; child 1; thread 620<br>Mon 2005-01-31 08:50:47: Accepting SMTP connection from <br>Mon 2005-01-31 08:50:47: Looking up PTR record for 211.227.104.112 (112.104.227.211.IN-ADDR.ARPA)<br>Mon 2005-01-31 08:50:47: Name server reports domain name unknown<br>Mon 2005-01-31 08:50:47: --> 220 MyName.idv.tw ESMTP MDaemon 7.2.2; Mon, 31 Jan 2005 08:50:47 +0800<br>Mon 2005-01-31 08:50:47: <-- EHLO zzz007<br>Mon 2005-01-31 08:50:48: Performing lookup on zzz007 (looking for 211.227.104.112)<br>Mon 2005-01-31 08:50:48: Name server reports domain name unknown<br>Mon 2005-01-31 08:50:48: --> 250-MyName.idv.tw Hello zzz007, pleased to meet you<br>Mon 2005-01-31 08:50:48: --> 250-ETRN<br>Mon 2005-01-31 08:50:48: --> 250-AUTH=LOGIN<br>Mon 2005-01-31 08:50:48: --> 250-AUTH LOGIN CRAM-MD5<br>Mon 2005-01-31 08:50:48: --> 250-8BITMIME<br>Mon 2005-01-31 08:50:48: --> 250 SIZE 0<br>Mon 2005-01-31 08:50:49: <-- RSET<br>Mon 2005-01-31 08:50:49: --> 250 RSET? Well, ok.<br>Mon 2005-01-31 08:50:50: <-- MAIL FROM:<test><br>Mon 2005-01-31 08:50:50: Performing lookup on MyName.idv.tw (looking for 211.227.104.112)<br>Mon 2005-01-31 08:50:50: D=MyName.idv.tw TTL=(1440) A=<br>Mon 2005-01-31 08:50:50: Spam Blocker is checking 211.227.104.112 (connecting IP)<br>Mon 2005-01-31 08:50:50: * sbl-xbl.spamhaus.org - passed<br>Mon 2005-01-31 08:51:00: * relaywatcher.n13mbl.com - passed<br>Mon 2005-01-31 08:51:00: * opm.blitzed.org - passed<br>Mon 2005-01-31 08:51:01: * relays.ordb.org - passed<br>Mon 2005-01-31 08:51:01: * bl.spamcop.net - passed<br>Mon 2005-01-31 08:51:01: Spam Blocker is finished<br>Mon 2005-01-31 08:51:01: --> 250 <[email protected]>, Sender ok<br>Mon 2005-01-31 08:51:02: <-- RCPT TO:<[email protected]><br>Mon 2005-01-31 08:51:02: --> 250 <[email protected]>, Recipient ok<br>Mon 2005-01-31 08:51:02: <-- DATA<br>Mon 2005-01-31 08:51:02: Creating temp file (SMTP): c:\mdaemon\temp\md50000000001.tmp<br>Mon 2005-01-31 08:51:02: --> 354 Enter mail, end with <CRLF>.<CRLF><br>Mon 2005-01-31 08:51:03: Message creation successful: c:\mdaemon\inbound\md50000000497.msg<br>Mon 2005-01-31 08:51:03: --> 250 Ok, message saved <Message-ID: ><br>Mon 2005-01-31 08:51:04: <-- QUIT<br>Mon 2005-01-31 08:51:04: --> 221 See ya in cyberspace<br>Mon 2005-01-31 08:51:04: SMTP session successful (Bytes in/out: 2610/414)<br>Mon 2005-01-31 08:51:04: ---------- <span style='color:red'>SMTP(out)</span><br>Mon 2005-01-31 08:51:11: Session 2; child 1<br>Mon 2005-01-31 08:51:10: Parsing Message <c:\mdaemon\remoteq\pd50000000479.msg><br>Mon 2005-01-31 08:51:10: From: test<br>Mon 2005-01-31 08:51:10: To: [email protected]<br>Mon 2005-01-31 08:51:10: Subject: =?EUC-KR?B?KLGksO0pv/XB+MGkvPax4iy/rLz2seIsuvG1pSC5q7fhIMO8x+jAzLqlxq5A?=<br>Mon 2005-01-31 08:51:10: Message-ID: <br>Mon 2005-01-31 08:51:10: MX-record resolution of in progress (DNS Server: 168.95.1.1)...<br>Mon 2005-01-31 08:51:10: P=010 D=daum.net TTL=(21) MX= {211.43.197.170}<br>Mon 2005-01-31 08:51:10: P=010 D=daum.net TTL=(21) MX=<br>Mon 2005-01-31 08:51:10: P=010 D=daum.net TTL=(21) MX=<br>Mon 2005-01-31 08:51:10: P=010 D=daum.net TTL=(21) MX=<br>Mon 2005-01-31 08:51:10: P=010 D=daum.net TTL=(21) MX=<br>Mon 2005-01-31 08:51:10: P=010 D=daum.net TTL=(21) MX=<br>Mon 2005-01-31 08:51:10: P=010 D=daum.net TTL=(21) MX=<br>Mon 2005-01-31 08:51:10: P=010 D=daum.net TTL=(21) MX=<br>Mon 2005-01-31 08:51:10: P=010 D=daum.net TTL=(21) MX=<br>Mon 2005-01-31 08:51:10: P=010 D=daum.net TTL=(21) MX=<br>Mon 2005-01-31 08:51:10: Attempting MX: P=010 D=daum.net TTL=(21) MX=<br>Mon 2005-01-31 08:51:10: Attempting SMTP connection to <br>Mon 2005-01-31 08:51:10: A-record resolution of in progress (DNS Server: 168.95.1.1)...<br>Mon 2005-01-31 08:51:10: D=mx1.hanmail.net TTL=(145) A=<br>Mon 2005-01-31 08:51:10: Attempting SMTP connection to <br>Mon 2005-01-31 08:51:10: Waiting for socket connection...<br>Mon 2005-01-31 08:51:10: Socket connection established (203.69.x.x : 1163 -> 211.43.197.143 : 25)<br>Mon 2005-01-31 08:51:10: Waiting for protocol initiation...<br>Mon 2005-01-31 08:51:10: <-- 220 rmail-192.hanmail.net ESMTP welcome to HanMail.Net ready at Mon, 31 Jan 2005 09:51:06 +0900<br>Mon 2005-01-31 08:51:10: --> EHLO MyName.idv.tw<br>Mon 2005-01-31 08:51:10: <-- 250-rmail-192.hanmail.net Hello , pleased to meet you<br>Mon 2005-01-31 08:51:10: <-- 250-ENHANCEDSTATUSCODES<br>Mon 2005-01-31 08:51:10: <-- 250-PIPELINING<br>Mon 2005-01-31 08:51:10: <-- 250-8BITMIME<br>Mon 2005-01-31 08:51:10: <-- 250-SIZE 30720000<br>Mon 2005-01-31 08:51:10: <-- 250 HELP<br>Mon 2005-01-31 08:51:10: --> MAIL From:<[email protected]> SIZE=3117<br>Mon 2005-01-31 08:51:11: <-- 250 2.1.0 <[email protected]>... Sender ok<br>Mon 2005-01-31 08:51:11: --> RCPT To:<[email protected]><br>Mon 2005-01-31 08:51:11: <-- 250 2.1.5 <[email protected]>... Recipient ok<br>Mon 2005-01-31 08:51:11: --> DATA<br>Mon 2005-01-31 08:51:11: <-- 354 Enter mail, end with "." on a line by itself<br>Mon 2005-01-31 08:51:11: Sending <c:\mdaemon\remoteq\pd50000000479.msg> to <br>Mon 2005-01-31 08:51:11: Transfer Complete.<br>Mon 2005-01-31 08:51:11: <-- 250 2.0.0 j0V0p6v1006278 Message accepted for delivery<br>Mon 2005-01-31 08:51:11: --> QUIT<br>Mon 2005-01-31 08:51:11: <-- 221 2.0.0 rmail-192.hanmail.net closing connection<br>Mon 2005-01-31 08:51:11: SMTP session successful (Bytes in/out: 509/3233)<br>Mon 2005-01-31 08:51:11: ---------- 若要設定認證或先收信後寄信, 對於我公司內眾多"電腦白痴"來講, 這是不可能的!<br>不知道我還漏了哪裡的設定!?<br>有人發生類似的情況嗎??<br>謝謝 我猜是利用你們的真實帳號來寄信。這個就可以解決了:<br><br><a href='http://www.suma.tw/modules/ipboard/index.php?s=&showtopic=881' target='_blank'>http://www.suma.tw/modules/ipboar...=&showtopic=881</a><br><br>善用 Trusted Host 輸入信任的 IP,就可以不必顧慮那些電腦白痴會不會了。<br> 信任IP無法度啦 <!--emo&:大哭:--><img src='http://www.suma.tw/uploads/smiles-045.gif' border='0' style='vertical-align:middle' alt='smiles-045.gif' /><!--endemo--> <br>台灣有各地分公司、加盟商<br>有越南分公司、菲律賓辦事處、大陸駐地人員<br>還有人帶著NoteBook到處跑.........<br><br>問題是, 在我本機內正常信件使用Becky!收發信, OutLook僅供測試帳號使用, 為何只有用OutLook的帳號來寄信? 難道是OutLook密碼遭破解!!?? 來改一下密碼試試看有沒有效.<br><br>倘若OutLook密碼遭破解, 那使用者可就倒大霉囉 <!--emo&:那A安呢:--><img src='http://www.suma.tw/uploads/smiles-037.gif' border='0' style='vertical-align:middle' alt='smiles-037.gif' /><!--endemo--> <br><br> 如果設定認證或先收信後寄信這兩項都不能用的話...被冒名寄信的機會是不小的...。 密碼改了! 再監控看看<br><br>"先收信後寄信"突然覺悟是可行的, 只要把時間設長長的就好了.<br>因為我公司的那些電腦白痴也只會使用OutLook, 而且一點就開始收信甚至開機自動執行OutLook, 又不會改設定.....<br><br>不過, OutLook的帳號密碼被垃圾客解讀, 真的很毛~~~
頁:
[1]