Network administration over the holidays



Nobody wants to be tied to their job over the holidays, but what if someone has hacked your servers and is using your machine to scam thousands of people a day? Does that keep for two weeks? Does someone monitor the abuse address? Incidents.org has a post on messages they’ve got from some reporting to abuse administrators receiving back vacation notices that things are basically on “autopilot until sometime next year.”


They also have some other reminders which I know I need to refresh my memory on…

Unless you turn off the systems, they will still need a bit of watching and caring. Do you have someone on call in case the burglar alarm goes off? Make sure you have someone checking the ‘abuse’ or ‘security’ mailboxes once a day (at least). You may have them even forwarded to a pager if you can filter the spam.

And while I am on the topic: Make sure you do actually have an ‘abuse’ and a ‘security’ alias for all of your domains. There are a number of aliases you should define for each of your domains:

RFC2142 provides a number of references to other RFCs, and suggests the following aliases:

postmaster@domain (RFC822). This should exist on all mail servers. You should also have postmaster@IP-Address-of-the-mail-server.
usenet@domain (RFC977). I know a lot of people will write to say differently. But I consider usenet dead for all practical purposes. You can probably do without this address.
abuse@domain
trouble@domain
noc@domain
security@domain
Take a look at your domain name and IP address whois entries and make sure they are current. For IP addresses, you may just find your ISPs contact info, which is fine as long as they notify you.

Spam to these addresses has become a problem. I don’t think there is a great solution, as some of the mail sent to these mail boxes may include copies of spam messages (even if you don’t send them, others may impersonate you and you still want to know. Abuse reports are one way you will find out).

That much said, if you’ve got all the bases covered, good for you. I think I need to make sure all the required addresses are aliased on the domains I control. Also, I hope that the holidays can be a quiet time that you don’t HAVE to go chasing problems, or respond to abuse messages….

Related Posts

Blog Traffic Exchange Related Posts
  • Persistent spammers Over the last couple weeks I've gotten persistent and annoying spams from a place that is currently at broadcastemailcompany.com (although they have had variations on their domain during that time.) broadcastemailgroupcom and broadcastemailcorporation.com are some of their other recent aliases. They claim in the email that their offer is only......
  • What a week.... I think it's time to pass along a long story of what's gone on over the last week or so here and some of the reasons there hasn't been anything posted. Generally, I would say that work has been busy, but something happened last week that went a bit beyond......
  • Sending Virus or Spam Abuse reports It occured to me that I may not have brought things to a neat conclusion on the post earlier about tracking email header data. I did make reference to sending an abuse report. Here's an attempt to clear up a few things that might still be fuzzy. 1) usually the......
Blog Traffic Exchange Related Websites
  • Do babies go to heaven when they die? Do babies go to heaven when they die: Before we can answer this question we have to put aside any preconceived notions or biases. We must acknowledge that there are a number of different potential answers to this question, some less pleasing than others. To answer this question honestly, we......
  • Using a Pipe Threader A pipe threader is a piece of equipment that allows you to cut threads in the end of a pipe. It's a piece of equipment that uses dies that you can change out for different sizes to grind threads in the ends of different sizes of pipes. If you use......
  • What is a Domain Name? A domain name is a Web address, such as godaddy.com, that is linked to an IP address (which represents a physical point on the Internet). When someone types a domain name into a Web browser, the requested Web page displays. A domain name consists of a top-level and a......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site