RE: [Exim] Dictionary attack defence ideas?

Top Page
Delete this message
Reply to this message
Author: Juha Saarinen
Date:  
To: David Markham
CC: exim-users@exim.org
Subject: RE: [Exim] Dictionary attack defence ideas?
On Mon, 8 Jul 2002, David Markham wrote:

> Is this only an exim4 thing or will it work on exim 3 ?


Looks like the same options are in 3.3x as well:

http://www.exim.org/exim-html-3.30/doc/html/spec_toc.html#TOC363

> I have have people mailing through our outbound servers allowed due to dial
> up ips allowed to relay, but when they decide to spam or send to loads of
> different recipients, its harder to find now as they keep changing their
> from address and sending small numbers at a time of say 50-60.
>
> They must be coming from the same host though, so will
> smtp_accept_max_per_host or smtp_ratelimit_xxx help?


I don't know how it would work with relaying.

Wouldn't a harshly enforced ToC for the spamming users be a good idea?

--
Juha Saarinen