Hi,
we've just cleaned up after what may possibly have been a denial of
service attack. Namely, mail sent to majordomo here, claiming
to be from listserv at another site. The two robots then proceeded to
mail their respective help messages at each other... :-)
We are running majordomo-1.93 with a patch to prevent it responding
to mailer-daemon etc. I've added listserv to that check to beat this
recent problem.
We've now downloaded majordomo-1.94 and it appears to have several
good new features, but after a quick look, I think it still needs a
patch like that below.
--sjg
*** majordomo.~1~ Mon Mar 6 15:07:32 1995
--- majordomo Tue Oct 29 12:14:50 1996
***************
*** 115,120 ****
--- 115,126 ----
exit 2;
}
+ # <sjg> robots should not reply to other robots...
+ if ($reply_to =~ m/(mailer-daemon|uucp|listserv)\@/i) {
+ print STDERR "$whoami not replying to $1 to avoid mail loop.\n";
+ exit 0;
+ }
+
if ($return_subject && defined $hdrs{'subject'}) {
$sub_addin = ": " . substr($hdrs{'subject'}, 0, 40);
} else {
|
|
