Operating System - HP-UX
1830829 Members
2673 Online
110017 Solutions
New Discussion

logging telnet 25 connections

 
Pramod Sharma
Occasional Contributor

logging telnet 25 connections

Hi !

Can u pls tell me how to log the details (like IP addr, date, time etc) of telnet 25 connections to smtp mail server so as to track down the fake messages.
Can we disable it ?? If yes, then what is the procedure.

Thanks
do good, have good
1 REPLY 1
Massimo Bianchi
Honored Contributor

Re: logging telnet 25 connections

in /etc/mail/sendmail.cf

# Logging Level (option LogLevel): #
# #
# Logging level determines the classes of events which will be #
# logged by sendmail in /var/adm/syslog/mail.log. By default the #
# log level is 9, which reports successful deliveries (and the #
# mailer and host used for delivery), queue daemon startup, alias #
# database rebuilds, and various errors. More detailed information #
# is reported with higher log levels. In particular, log level 11 #
# reports the MX host (if any) and internet address to which mail #
# was delivered. Refer to the documentation for details. #
# #
# Note that log level also affects the information reported by #
# sendmail -bv. At log level 10 and higher, sendmail also reports #
# the mailer and host that would be used for addresses that are #
# "deliverable." #
# #


In the mail.log there should be enough information, if not increase the log level.

Massimo