RE: [Exim] Interesting "attack" on my exim server...

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Suresh Ramasubramanian
Datum:  
To: Kamesh Patel
CC: 'Jeff Hahn', exim-users
Betreff: RE: [Exim] Interesting "attack" on my exim server...
On Thu, 22 Aug 2002, Kamesh Patel wrote:

> Well the domain in which it is coming from is uol.com.br i suggest you
> contact them and inform them of this. Also once you have done this you may
> wish to contact your ISP's and get them RBL'ed!


"Your ISP"? If you want to submit that lot to MAPS - which doesn't run open
proxy lists by the way, that's up to you.

Why should your ISP do all that much work for you?

I'd suggest using one or more open proxy blocklists - that's where most of the
dictionary attacks are coming from. socks.relays.osirusoft.com and
opm.blitzed.org for starters, if not proxies.relays.monkeys.com

Add to that stuff for dialup pools, spam sources, open relays - and you got a
fairly decent tool for spam protection.

http://spamblock.outblaze.com/spamchk.html for what we use (all those zones are
AXFR'd over and combined using djb's rbldns).

    -srs