I wonder if limiting the number of incoming messages per SMTP session
will have the effect you want - you would expect whatever mail
injection tool is being used would just start another session and
continue with scarcely any delay.
My own approach to the problem was to have a log processor which
processed the exim logs on the fly and rate limited on modem IP
addresses - it actually dropped information about spamming IPs and
message ids into a local database which was consulted by the system
filter.
Use of this would normally pick up all but the first few messages of a
spam run.
Nigel.
--
[ - Opinions expressed are personal and may not be shared by VData - ]
[ Nigel Metheringham Nigel.Metheringham@??? ]
[ Phone: +44 1423 850000 Fax +44 1423 858866 ]
