> > 138.89.169.242 - - [27/Oct/2002:00:01:04 -0500] "CONNECT
> > mx2.mail.yahoo.com:25 HTTP/1.0" 200 271 TCP_MISS:DIRECT
> [User-Agent:
> > Mozilla/4.0 (compatible; MSIE 5.01; Windows NT
> 5.0)\r\nCache-Control:
> > private,no-cache\r\nPragma: no-cache\r\n] []
> >
> > Any ideas why I would have a request from port 25 coming in?
>
> I may be reading the common log format incorrectly, but this doesn't
> look like a request coming /from/ port 25 to me. It looks like a
> request connecting /to/ port 25 using the CONNECT method to set up a
> tunnel. In other words someone is relaying mail through your
> proxy, and
> not getting a TCP_DENIED response. That's a bad thing, and not the
> default for Squid.
>
No, it is someone using SSL to read their Yahoo mailbox.
------------------------------------------------------------------------
NOTICE: This e-mail message and attachments may contain confidential
information. If you are not the intended recipient you should not use or
disclose any information in the message or attachments. If received in
error, please notify the sender by return email immediately. Comcare
does not waive any confidentiality or privilege.
Comcare's Canberra and Melbourne offices have moved to new premises.
We hope this notice makes it easier for you to update your records.
New street addresses:
Canberra office
Level 1
14 Moore street
CANBERRA CITY ACT 2601
Melbourne Office
Level 2
121 William Street
MELBOURNE VIC 3001
Claims Fax Number 03 9620 4721
Please call Comcare on 1300 366 979 if you have any queries.
Received on Mon Oct 28 2002 - 19:11:46 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:10:55 MST