Slashdot Mirror

← Back to Stories (view on slashdot.org)

How Well are Your Servers Handling MyDoom?

Posted by Cliff on from the preventing-the-meltdown dept.

whosyourgeekdaddy asks: "A co-worker was showing me some of the usage stats for a clients exchange server: its averaging 630 users, and 300,000 emails per day, for the last 4 days. This made me want to ask how heavy is the workload for your 'average' Exchange server? Is this typical? MyDoom has upped the usage some, but not a lot. This client is a real estate company, so e-mail is frequently used." Of course, Exchange servers aren't the only ones feeling MyDoom. What kind of statistics have you been seeing from MyDoom, both as a user and as an administrator?

3 of 81 comments (clear)

  1. User... by Jack+Comics · · Score: 2, Interesting
    I won the recent Netscape auction for the Jack at netscape dot com e-mail address and a "free" year's worth of dial-up access.

    Once I logged into the e-mail account, I noticed it was a little spammy, but that was to be expected. AOL/Netscape was generous though and gave me a one hundred megabyte POP3 e-mail account.

    However, yesterday evening, I noticed an influx of about *2,000* e-mails in about a four hour period. All were related to MyDoom, either with the virus attached or bounces due to forged "from" addresses. Since then, I've been getting an average of 830 e-mails per *hour*. My Netscape e-mail account has reached the 100 megabyte e-mail quota twice so far, with over 13,000 e-mails each time, and after I clean it out, it starts to fill back up again. There's just no end in sight. The e-mail account is completely useless to me now. I should have known bidding on that auction was a bad idea. :( In the meantime, I've had to make the e-mail account white listed, meaning it now only accepts e-mail from known e-mail addresses, until I can figure out an equitable solution.

    --
    "We are all in the gutter, but some of us are looking at the stars." - Oscar Wilde
  2. Re:Thanks guys. by Neon+Spiral+Injector · · Score: 2, Interesting

    Hear hear!

    Same goes to the Exim, Exiscan, and Clamav authors.

    I woke this morning with an e-mail saying the Clamav signature DB was updated, then had a look at my Exim reject logs to see if it was rejecting Mydoom. Sure was, at that time about 2000 of them since midnight.

  3. Nothing compared to spam by hords · · Score: 3, Interesting

    I'm a mail/systems administrator at a small/medium sized ISP. This virus is nothing compared to the onslaught of spam we get. >2 million total messages a day and blocking >1.6 million due to spam. Our virus filter is taking them out no problem, and no we aren't bouncing it =)