mailinfo日志:
安装了postfix服务后,有大量的类似日志,请帮忙,只是怎么回事?Oct 18 08:49:38 9981 postfix/smtpd[32098]: disconnect from 12-208-192-3.client.mchsi.com[12.208.192.3]
Oct 18 08:52:58 9981 postfix/anvil[32096]: statistics: max connection rate 2/60s for (smtp:12.208.192.3) at Oct 18 08:49:35
Oct 18 08:52:58 9981 postfix/anvil[32096]: statistics: max connection count 2 for (smtp:12.208.192.3) at Oct 18 08:49:35
Oct 18 08:52:58 9981 postfix/anvil[32096]: statistics: max cache size 1 at Oct 18 08:47:10
Oct 18 08:53:02 9981 postfix/smtpd[32102]: connect from mailfe16.swipnet.se[212.247.155.225]
Oct 18 08:53:03 9981 postfix/smtpd[32102]: NOQUEUE: reject: RCPT from mailfe16.swipnet.se[212.247.155.225]: 554 5.7.1 <Linzy@9981.net>: Relay access denied; from=<> to=<Linzy@9981.net> proto=ESMTP helo=<swip.net>
Oct 18 08:53:03 9981 postfix/smtpd[32102]: disconnect from mailfe16.swipnet.se[212.247.155.225]
Oct 18 08:56:23 9981 postfix/anvil[32104]: statistics: max connection rate 1/60s for (smtp:212.247.155.225) at Oct 18 08:53:02
Oct 18 08:56:23 9981 postfix/anvil[32104]: statistics: max connection count 1 for (smtp:212.247.155.225) at Oct 18 08:53:02
Oct 18 08:56:23 9981 postfix/anvil[32104]: statistics: max cache size 1 at Oct 18 08:53:02
Oct 18 08:57:43 9981 postfix/smtpd[32106]: connect from scanlab02.mymailwall.at[193.80.4.30]
Oct 18 08:57:44 9981 postfix/smtpd[32106]: NOQUEUE: reject: RCPT from scanlab02.mymailwall.at[193.80.4.30]: 554 5.7.1 <tony.tony@9981.net>: Relay access denied; from=<> to=<tony.tony@9981.net> proto=SMTP helo=<scanlab02.mymailwall.at>
Oct 18 08:57:45 9981 postfix/smtpd[32106]: lost connection after QUIT from scanlab02.mymailwall.at[193.80.4.30]
Oct 18 08:57:45 9981 postfix/smtpd[32106]: disconnect from scanlab02.mymailwall.at[193.80.4.30]
Oct 18 08:58:29 9981 postfix/smtpd[32106]: connect from mta1sn1.eplus-online.de[212.23.97.131]
Oct 18 08:58:29 9981 postfix/smtpd[32106]: NOQUEUE: reject: RCPT from mta1sn1.eplus-online.de[212.23.97.131]: 554 5.7.1 <Wolozhanin.Vladimir@9981.com>: Relay access denied; from=<> to=<Wolozhanin.Vladimir@9981.com> proto=ESMTP helo=<mta1sn1.eplus-online.de>
Oct 18 08:58:30 9981 postfix/smtpd[32106]: disconnect from mta1sn1.eplus-online.de[212.23.97.131]
Oct 18 08:59:38 9981 pulseaudio[32185]: alsa-util.c: Device front:0 doesn't support 44100 Hz, changed to 48000 Hz.
Oct 18 08:59:39 9981 pulseaudio[32185]: alsa-util.c: Device front:0 doesn't support 44100 Hz, changed to 48000 Hz.
Oct 18 08:59:41 9981 hcid[6689]: Default passkey agent (:1.139, /org/bluez/passkey) registered
Oct 18 08:59:41 9981 hcid[6689]: Default authorization agent (:1.139, /org/bluez/auth) registered
Oct 18 08:59:43 9981 NetworkManager: <info> Updating allowed wireless network lists.
Oct 18 08:59:43 9981 NetworkManager: <WARN> nm_dbus_get_networks_cb(): error received: org.freedesktop.NetworkManagerInfo.NoNetworks - There are no wireless networks stored..
Oct 18 09:01:50 9981 postfix/anvil[32108]: statistics: max connection rate 1/60s for (smtp:193.80.4.30) at Oct 18 08:57:43
Oct 18 09:01:50 9981 postfix/anvil[32108]: statistics: max connection count 1 for (smtp:193.80.4.30) at Oct 18 08:57:43
Oct 18 09:01:50 9981 postfix/anvil[32108]: statistics: max cache size 2 at Oct 18 08:58:29
Oct 18 09:09:01 9981 /USR/SBIN/CRON[32428]: (root) CMD ( [ -x /usr/lib/php5/maxlifetime ] && [ -d /var/lib/php5 ] && find /var/lib/php5/ -type f -cmin +$(/usr/lib/php5/maxlifetime) -print0 | xargs -r -0 rm)
Oct 18 09:10:13 9981 postfix/smtpd[32457]: connect from mailw-out.lix.aon.at[195.3.86.159]
Oct 18 09:10:14 9981 postfix/smtpd[32457]: NOQUEUE: reject: RCPT from mailw-out.lix.aon.at[195.3.86.159]: 554 5.7.1 <komaromy.ivan@9981.net>: Relay access denied; from=<> to=<komaromy.ivan@9981.net> proto=SMTP helo=<mailw-out.lix.aon.at>
Oct 18 09:10:15 9981 postfix/smtpd[32457]: lost connection after QUIT from mailw-out.lix.aon.at[195.3.86.159]
Oct 18 09:10:15 9981 postfix/smtpd[32457]: disconnect from mailw-out.lix.aon.at[195.3.86.159]
Oct 18 09:13:35 9981 postfix/anvil[32459]: statistics: max connection rate 1/60s for (smtp:195.3.86.159) at Oct 18 09:10:13
Oct 18 09:13:35 9981 postfix/anvil[32459]: statistics: max connection count 1 for (smtp:195.3.86.159) at Oct 18 09:10:13
Oct 18 09:13:35 9981 postfix/anvil[32459]: statistics: max cache size 1 at Oct 18 09:10:13
Oct 18 09:17:01 9981 /USR/SBIN/CRON[32531]: (root) CMD ( cd / && run-parts --report /etc/cron.hourly)
是攻击,还是垃圾邮件?
该如何处理呢?
能不能用iptable把它拒掉?