LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 12-13-2006, 12:56 AM   #1
ssilayaraja
Member
 
Registered: Aug 2003
Location: chennai
Posts: 115

Rep: Reputation: 15
hacking mailserver


hi all
i am using sendamil 8.12 with squirremail 1.12.11 on my redhat linux 8.0 box i feel somebody hacking one of our employ account. when he access the webmail in our account he can see only 300 messages. but he access from ouside network more than 1000 messages in the inbox this is occuring sometimes only.
i am confusing what should i do plz gude me.

thanks and regards
 
Old 12-13-2006, 01:07 AM   #2
chort
Senior Member
 
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660

Rep: Reputation: 76
1.) Red Hat 8 is ANCIENT!!! Please, please, please upgrade to something more recent. It's bound to be riddled with unpatched security flaws.

2.) Squirrelmail has had plenty of vulnerabilities itself, like Cross-Site Scripting vulns. Make sure you're on the latest version (I'm not sure what that is).

3.) It's possible that there is some sort of index corruption with Squirrelmail that prevents all the messages from being displayed, or some other non-hacking-related reason. Your description is very vague, so it's impossible to tell you whether this is hacking or not. Describe exactly how the mail is accessed from "webmail" vs. "from outside". What are the differences? Different client? Different protocol?
 
Old 12-15-2006, 11:40 AM   #3
Fadoksi
Member
 
Registered: Apr 2006
Location: Finland
Distribution: Ubuntu, Gentoo, Debian
Posts: 88

Rep: Reputation: 15
The newest version of squirrelmail is 1.4.9a and 8.13.8 for sendmail, so basically you are just sitting and waiting to be exploited.
 
Old 12-15-2006, 06:28 PM   #4
eendoe
LQ Newbie
 
Registered: Sep 2003
Location: Australia
Distribution: Smooth, Deb, Ubu, KNX, RH mainly
Posts: 25

Rep: Reputation: 15
Looks like a bug with the webmail scipts?
 
Old 12-15-2006, 06:40 PM   #5
billymayday
LQ Guru
 
Registered: Mar 2006
Location: Sydney, Australia
Distribution: Fedora, CentOS, OpenSuse, Slack, Gentoo, Debian, Arch, PCBSD
Posts: 6,678

Rep: Reputation: 122Reputation: 122
More likely squirrelmail isn't configured properly. Which imap server do you use?
 
Old 12-15-2006, 11:03 PM   #6
ssilayaraja
Member
 
Registered: Aug 2003
Location: chennai
Posts: 115

Original Poster
Rep: Reputation: 15
i dont know where i misconfigured the problem is only with that particular account only
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Mailserver towel401 Linux - Networking 2 04-18-2005 05:08 PM
Hacking Exposed Wireless Hacking Chapter prompt Linux - Wireless Networking 0 05-08-2004 02:44 PM
HAcking adam_h General 11 09-25-2003 03:40 PM
hacking moeminhtun General 1 01-09-2003 04:39 AM
About Mailserver RKris Linux - Software 1 08-23-2002 08:07 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:23 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration