A Weblog About Topics and Issues Discussed in the Book Spam Kings by Brian McWilliams

« Verizon pays for spam blockade | Main | Moving on »

April 5, 2006

Detoothing a Barracuda

barracuda.gifSome people are warning about a security flaw in the popular Barracuda spam firewall. The vulnerability in how Barracudas handle zoo archives potentially could enable a remote attacker to gain control of the firewall program using a buffer overflow exploit. Fortunately, Barracuda has issued a patch to prevent attackers from exploiting this bug -- and potentially turning off the firewall and unleashing a torrent of spam on the unprotected mail servers behind the firewall.

But what's up with all the outbound spam from apparently uncompromised Barracudas? According to the product site, the appliance "prevents spamming" and "includes all the features needed to eliminate your outbound spam." Yet there are numerous reports of spam messages containing the "Scanned: by Barracuda Spam Firewall" header.

Some recent drug spams are apparently coming from webmail providers including Frys.com and some public libraries, such as one in Maryland. There have also been recent 419 scam-spams from a Barracuda-protected mail server run by Liberty USA.

Maybe these are all cases of operator error or Barracudas being misconfigured. The product does have a reputation for some annoying default features, including one known affectionately as backscatter. In any case, makes you wonder whether a bad guy with remote access to a Barracuda could do much additional damage.

Posted by brian at April 5, 2006 7:21 PM


Can we detooth you next Brian?

Posted by: Hombleston at April 12, 2006 1:07 PM


Weblog authors are solely responsible for the content and accuracy of their weblogs, including opinions they express,
and O’Reilly Media, Inc., disclaims any and all liability for that content, its accuracy, and opinions it may contain.

All trademarks and registered trademarks appearing on spamkings.oreilly.com are the property of their respective owners.

O'Reilly Home | Privacy Policy

© 2004 O'Reilly Media, Inc.
For assistance with this site, email: