looking for a spammer/virii/malware .... on my system
alexus at gmail.com
Thu Aug 18 17:02:00 UTC 2011
right, but what seems to be (according to headers) someone makes a
connection from my box to theirs over the web (80/443) so i'm going
see if I can see anything, if not then i'll keep it blocked until I
figure out something else to find who does that...
On Thu, Aug 18, 2011 at 12:42 PM, Chuck Swiger <cswiger at mac.com> wrote:
> On Aug 18, 2011, at 9:36 AM, alexus wrote:
>> su-3.2# tcpdump -nnAvvvw webmail.west.cox.net 'dst host 126.96.36.199 and
>> (dst port 80 or 443)'
>> tcpdump: listening on bce0, link-type EN10MB (Ethernet), capture size 96 bytes
>> Got 0
>> let's see what I capture...
> You're going to capture traffic of people reading webmail from Cox.net.
> However, as much as that might be interesting, it is not useful
> for detecting outbound spam from a machine or network....
More information about the freebsd-questions