Skip to main content.

2001-Aug-02

Noticed missing /etc/aliases entries on a few servers; in some cases (on a server I am not the main admin), there were many unread mailboxes (for system and regular users). I fixed a few of these problems.

On one sendmail box, I added a ruleset to sendmail.mc to try stopping SirCam worm.

LOCAL_RULESETS
Hdate: $>sircam
D{SMsg}This message appears to contain the Sircam virus
Kdatecheck regex -f -aMATCH date
Ssircam
R$*             $: < $&{hdr_name} > $1
R< $* > $*      $: < $(datecheck $1 $) > $2
R< MATCH > $*   $#error $: 550 ${SMsg}
R< $* > $*      $: $2

Kian called and said his (FreeBSD) NAT wasn't working. He was receiving messages saying his filesystem was full; his / was at 109%. I couldn't log in. Using find(1), we found huge /var/log/alias.log. This was created by natd -log switch. So after deleting file, it worked again. I changed /etc/rc.conf to not use "-log" for natd.