Autor: Wakko Warner Data: A: Alan J. Flavell CC: exim-users@exim.org Assumpte: Re: [Exim] Re: smtp_accept_max_rcpt_failures?!
> And yes, when we tried dropping the call, some senders _did_ retry > over and over. Dropping the call is still our initial response in
> this situation, but I'm now having the ACL write IPs which appear to
> be trying dictionary-scan attacks into a separate blacklist file, and
> when a call comes from such an IP (whether a retry, or whether a fresh
> list of addressees) I take them, slowly, through their entire RCPT
> addressee list, calmly denying each address with a "your host IP has
> automatically blacklisted itself here" response.
How are you having the ACL add the IP to a blacklist? I did this with
people who attempt a relay through my system using $run.
--
Lab tests show that use of micro$oft causes cancer in lab animals
