Quote:
Originally Posted by amedjones
i've been getting alot of smpt logs in my /var/log/secure anyone know what these entry mean?
|
I'll counter that with some questions if you don't mind. Research those and you've got the answer:
- What is Xinetd?
- What services does it provide?
- Where are those services configured?
- What per-service logging options are available to you? What can they be configured to log?
Some questions a responsable admin could ask himself whenever auditing service logs:
- Are the IP addressess in the last field of the logs allowed to access the service?
- What per-service access restrictions are available to you?
- Why are you not using TLS or a SSL wrapper like Stunnel?