Looks like some script kiddies ran a brute force attack on the pop3 and got lucky, which also got them smtp from what I can see in my logs... Didn't use any vulns and SELinux is enabled on those servers, so looks like my morning tomorrow will involve denyhosts monitoring my auh logs... for mail instead of just ssh.
Looks like some script kiddies ran a brute force attack on the pop3 and got lucky, which also got them smtp from what I can see in my logs... Didn't use any vulns and SELinux is enabled on those servers, so looks like my morning tomorrow will involve denyhosts monitoring my auh logs... for mail instead of just ssh.