[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] ipop2d hole?
- Subject: [cobalt-security] ipop2d hole?
- From: Mike Vanecek <nospam99@xxxxxxxxxxxx>
- Date: Sun, 21 Jan 2001 08:45:12 -0600
- Organization: anonymous
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
I noticed in my logs a bit of pop2 activity, to wit:
[admin@vanecek /etc]$ grep -i "pop2" /var/log/*
/var/log/maillog:Jan 19 14:18:38 vanecek ipop2d[10903]: Connection broken
while reading line user= host=[211.42.97.65]
/var/log/maillog:Jan 19 16:04:26 vanecek ipop2d[11249]: IMAP login to
host=157.158.44.65 user=nobody host=twardy.kbmost.polsl.gliwice.pl
[157.158.44.65]
/var/log/maillog:Jan 19 16:05:20 vanecek ipop2d[11249]: Logout user=nobody
host=twardy.kbmost.polsl.gliwice.pl [157.158.44.65]
/var/log/maillog:Jan 20 10:31:29 vanecek ipop2d[15411]: IMAP login to
host=157.158.44.65 user=nobody host=twardy.kbmost.polsl.gliwice.pl
[157.158.44.65]
/var/log/maillog:Jan 20 10:32:03 vanecek ipop2d[15411]: Logout user=nobody
host=twardy.kbmost.polsl.gliwice.pl [157.158.44.65]
/var/log/secure:Dec 17 13:30:05 vanecek ipop2d[32504]: warning: can't get
client address: Connection reset by peer
/var/log/secure:Dec 17 13:30:05 vanecek ipop2d[32504]: connect from unknown
/var/log/secure:Jan 19 14:18:34 vanecek ipop2d[10902]: warning: can't get
client address: Connection reset by peer
/var/log/secure:Jan 19 14:18:34 vanecek ipop2d[10902]: connect from unknown
/var/log/secure:Jan 19 14:18:35 vanecek ipop2d[10903]: connect from
211.42.97.65
/var/log/secure:Jan 19 16:04:25 vanecek ipop2d[11249]: connect from
157.158.44.65
/var/log/secure:Jan 20 10:31:13 vanecek ipop2d[15411]: connect from
157.158.44.65
I have edited inetd.conf to disable pop2 services which should close up that
hole? By doing so, am I going to lose any needed email services or
connectivity?
Thanks, Mike.