| Delivery has failed to these recipients or groups: | |
| [email protected] | |
| The e-mail address you entered couldn't be found. Please check the recipient's e-mail address and try to resend the message. If the problem continues, please contact your helpdesk. | |
| awk -F, '/authid=/{print $3}' maillog | sort | uniq -c | sort -rn > sorted | |
| Timestamps with a counter | |
| awk -F, '/authid=aaa/{print $1 $3}' maillog maillog.1 | awk '++a { print $3 " " a}' | |
| Connections per hour displayed | |
| awk -F, '/authid=aaa/{print $1 $3}' maillog | awk '{ print $3}' | awk -F: '{print $1":00"}' | uniq -c | |
| Connections per minute displayed |
| Top smtp auth talkers for Friday (deidentified). I believe that only A is compromised. | |
| 1228 authid=A | |
| 314 authid=B | |
| 190 authid=C | |
| 77 authid=D | |
| 49 authid=E | |
| 44 authid=F | |
| [Tue Aug 06 09:10:53 2013] [error] [client 172.28.186.185] MOD_AUTH_CAS: Certificate CN does not match secure.its.yale.edu, referer: https://macmillan.its.yale.edu/local_doc/ | |
| [Tue Aug 06 09:10:53 2013] [error] [client 172.28.186.185] MOD_AUTH_CAS: Certificate CN does not match secure.its.yale.edu, referer: https://macmillan.its.yale.edu/local_doc/ | |
| [Tue Aug 06 09:10:53 2013] [error] [client 172.28.186.185] MOD_AUTH_CAS: Certificate CN does not match secure.its.yale.edu, referer: https://macmillan.its.yale.edu/local_doc/ | |
| [Tue Aug 06 09:10:53 2013] [error] [client 172.28.186.185] MOD_AUTH_CAS: Certificate CN does not match secure.its.yale.edu, referer: https://macmillan.its.yale.edu/local_doc/ | |
| [Tue Aug 06 09:10:53 2013] [error] [client 172.28.186.185] MOD_AUTH_CAS: Certificate CN does not match secure.its.yale.edu, referer: https://macmillan.its.yale.edu/local_doc/ | |
| [Tue Aug 06 09:10:54 2013] [error] [client 172.28.186.185] MOD_AUTH_CAS: Certificate CN does not match secure.its.yale.edu, referer: https://macmilla |
| $ pwd | |
| /opt/cisco/anyconnect/bin | |
| $ ./vpn | |
| Cisco AnyConnect Secure Mobility Client (version 3.1.02043) . | |
| Copyright (c) 2004 - 2013 Cisco Systems, Inc. All Rights Reserved. | |
| $ host -t mx hp-assoc.com | |
| hp-assoc.com mail is handled by 10 mail1g4.mail.pairserver.com. | |
| $ host mail1g4.mail.pairserver.com. | |
| mail1g4.mail.pairserver.com is an alias for mail1.g4.pair.com. | |
| mail1.g4.pair.com has address 66.39.3.119 | |
| mail1.g4.pair.com has IPv6 address 2607:f440::4227:377 | |
| $ host -t mx yale.edu | |
| yale.edu mail is handled by 9 vm-emlprdimg-06.its.yale.edu. | |
| yale.edu mail is handled by 9 vm-emlprdimg-07.its.yale.edu. | |
| yale.edu mail is handled by 9 vm-emlprdimg-03.its.yale.edu. | |
| yale.edu mail is handled by 9 vm-emlprdimg-04.its.yale.edu. | |
| yale.edu mail is handled by 9 vm-emlprdimg-05.its.yale.edu. | |
| $ host -t mx connect.yale.edu | |
| connect.yale.edu mail is handled by 10 x10-caht4.its.yale.edu. | |
| connect.yale.edu mail is handled by 20 mr1.its.yale.edu. |
| Index: dcsunix/drupal7/pub/etc/openldap/ldap.conf.template | |
| =================================================================== | |
| --- dcsunix/drupal7/pub/etc/openldap/ldap.conf.template (working copy) | |
| +++ dcsunix/drupal7/pub/etc/openldap/ldap.conf.template (.../https://cf3svn....) (revision 1393) | |
| @@ -14,3 +14,4 @@ | |
| #DEREF never | |
| TLS_CACERTDIR /etc/openldap/certs | |
| +TLS_REQCERT never |
$ dig -t txt googleprd._domainkey.yale.edu
; <<>> DiG 9.9.1-P3-RedHat-9.9.1-9.P3.fc17 <<>> -t txt googleprd._domainkey.yale.edu
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12280
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 5
[jcoleman@gilda ~]$ dig -t txt googleprd._domainkey.yale.edu
; <<>> DiG 9.9.1-P3-RedHat-9.9.1-9.P3.fc17 <<>> -t txt googleprd._domainkey.yale.edu ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12280 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 5