[Mimedefang] Recent burst of greylist activity

[David F. Skoll]

Wow...

My greylist detector went crazy...  I'm seeing hits from different
machines all over the world; looking at the faked e-mail addresses, these
attempts *must* be correlated.

It looks like a spammer has managed to take over a whole army of machines
to do the dirty work.

Some sample greylist hits from today (Date, Sender, Machine):

22:48:57 rmcnealcb at cefic.be        c-67-168-81-135.client.comcast.net.
22:49:05 dbarlow_mc at bnf.fr         adsl-69-104-56-153.dsl.pltn13.pacbell.net.
22:49:09 rsanchezvi at wissen.de      c68.117.72.216.roc.mn.charter.com.
22:49:12 corinne_clarke_tz at rte.ie  modemcable118.34-203-24.mc.videotron.ca.
22:49:14 augustine_burt_kt at minedu.fi h24-76-70-249.su.shawcable.net.
22:49:21 jaimepollarddg at new.billboard.cz c-67-168-119-6.client.comcast.net.
22:49:43 delaney_vn at new.billboard.cz 12-215-187-249.client.mchsi.com.
22:49:47 adams_bk at minedu.fi        c-24-12-61-218.client.comcast.net.
22:50:06 daaron_um at kbr.be          cdm-68-226-132-158.laft.cox-internet.com.
22:50:14 ba_mccainkb at zeit.de       207.215.252.87 2(SERVFAIL)
22:50:19 mwagner_ur at new.billboard. 212.204.98.234 3(NXDOMAIN)
22:50:55 rudyrivera_ip at sueddeutsche.de c211-30-105-108.carlnfd1.nsw.optusnet.com.au.
22:51:00 q.houston_cj at euroskop.cz  214.133.202.68.cfl.rr.com.
22:51:20 isidro.paganmb at vtt.fi     ool-18ba8641.dyn.optonline.net.
22:51:45 virginiadempsey_je at uni-mannheim.de ool-44c4ca70.dyn.optonline.net.

Regards,

David.