Graeme Fowler wrote:
> On Mon, 2014-09-15 at 11:19 +0800, mtrainer@??? wrote:
>> I am using exim4-daemon-heavy 4.80-7 on debian wheezy. My
>> users DB is in ldap. Some of our users that authenticated relaying out
>> via our exim mta servers. When any of these accounts get compromised I
>> change the user's password in LDAP to stop the spamming. Unfortunately
>> any relay connections already setup to the mta's keep working and spam
>> keeps going out for some time later. Is there a way to flush a user's
>> exim connections to stop them sending spam once the password has been
>> changed?
>
> Use exiwhat to determine what Exim is doing; locate the process; kill
> it.
Another (non-exclusive) possibility is to change some of the message
handling parameters such as smtp_accept_max_per_connection so that only
a limited number of messages can be sent in a single connection, thus
limiting the ongoing use of a connection.
Changing these parameters may have effects (potentially good or bad) on
your overall mail throughput etc and this will depend very much on the
type of usage and loading of your systems.
Nigel.
--
[ Nigel Metheringham ------------------------------ nigel@??? ]
[ Ellipsis Intangible Technologies ]
