Re: [exim] Ratelimit Tricks

Top Page
This message is part of the following thread:
M-++\the complete thread tree sorted by date
M.MMMDave Evans at <-
M\MMarc Perkel at ->
Delete this message
Reply to this message
Author: Jeremy Harris
Date:  
To: exim users
Subject: Re: [exim] Ratelimit Tricks
Marc Perkel wrote:
> OK - we touched on this earlier but want to see if I can actually make
> it work. What I want to do is use ratelimit to limit IP addresses so
> that if I get several invalid users (dictionary attack) that the IP
> address of the attacker get a defer until some time passes. I'm thinking
> that one bad recitient gets you defered for 10 minutes.

On an invalid user, write the IP to a file. Rotate files from cron
every five minutes. In your connect acl lookup the IP in the two most
recent files.

-J


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] Ratelimit Tricks[exim] Second class Email->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)