Just ping can cause DOS attack by Ping flooding. So if not needed for mail gateway, we can disable ping on our mail gateways.
Regards
Sujit
-----Original Message-----
From: Exim-users [
mailto:exim-users-bounces+s.choudhury=bbk.ac.uk@exim.org] On Behalf Of Marc Haber
Sent: 03 July 2015 17:02
To: exim-users@???
Subject: Re: [exim] mail gateway requirements
On Fri, 3 Jul 2015 14:26:11 +0000, Paul Havinden
<paul.havinden@???> wrote:
>>On 03.07.2015 11:58, Sujit Acharyya-choudhury wrote:
>>> We have seen recently two DoS attacks on our mail gateways, but the
>>> machines and Exim coped well. Our network administrator suggested to
>>> block ping, but from my previous experience elsewhere it cause some
>>> problem - I cannot recall exactly what. Any thoughts on this. I know it is Out of Topic.
>>You mentioned that you suspected DOS attack on your mail gateway previously but never provided any >details. I suspected some major misconfiguration on your side, like running an open relay or a policy of >accept-then-bounce, which would be very serious issues that have to be solved.
>
>>I you don't want to disclose any details on this list, you should consider hiring external consulting.
>
>We block pings to out mail servers and it's doesn’t appear to cause any issues.
And what does it help?
Greetings
Marc
--
-------------------------------------- !! No courtesy copies, please !! -----
Marc Haber | " Questions are the | Mailadresse im Header
Mannheim, Germany | Beginning of Wisdom " | http://www.zugschlus.de/
Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 621 72739834
--
## List details at
https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at
http://www.exim.org/
## Please use the Wiki with this list -
http://wiki.exim.org/