Re: [Exim] Host-based "too many invalid recipients" rejectio…

Startseite
Diese Nachricht ist Teil des folgenden Threads:
MDer komplette Thread sortiert nach Datum
MSheldon Hearn am <-
MSheldon Hearn am ->
Nachricht löschen
Nachricht beantworten
Autor: Thomas Tonino
Datum:  
To: Sheldon Hearn
CC: exim-users
Betreff: Re: [Exim] Host-based "too many invalid recipients" rejection
Sheldon Hearn wrote:

> Yeah. I'm thinking of feeding the DB files from a log analyzer and then
> just reading them from the ACLs.
>
> I'm surprised nobody else has done this.

I'm doing something quite different but somewhat similar as well: limit how many
rcpts can be used per local IP address, thus limiting the effective amount fo
spam that could get through in any given moment.

It currently works by using a line:

delay = ${readsocket{/tmp/throttlesock}{R${sender_host_address}\n}{1s}{}}

in the rcpt ACL. /tmp/throttlesock is a listening socket of a very simple perl
script that keeps counts in a hash.

The advantage may be that it works immediately, but you get everything in RAM
(but how many IP addresses will you see anyway?)


Thomas



Diese Nachricht wurde auf der folgenden Mailing-List gepostet:
Exim-users
Mailing-List-Info | Nachrichten um die Zeit		<-RE: spammers and secondary MX, was Re: [Exim] ECLEAR_SERVER messa ge[Exim] RE: spammers and secondary MX, was Re: ECLEAR_SERVER messa ge->
Tahini and Hummus and Cumin Development Archives administriert von cumin AdminsLurker (Version 2.3)