Re: [exim] Iptables/other blocking ylmf-pc clients

Top Page
Delete this message
Reply to this message
Author: list2@captainnet.net
Date:  
To: Daryl Richards, exim-users
Subject: Re: [exim] Iptables/other blocking ylmf-pc clients
Is it possible to implement delay of say 3 minutes on the ip in a helo
acl? Anyone can show an example?


On 8/10/16 6:46 AM, Daryl Richards wrote:
> This doesn't block the IP, it just drops the connection. Trivial to
> add a call to add the sender IP to a file or directly to iptables...
>
> acl_check_helo:
> ...
>   drop
>     message = Crack-bot
>     log_message = Common crack-bot host name
>     condition = ${if eq{$sender_helo_name}{ylmf-pc}}

>
>
> On 09/08/2016 10:17 PM, Dean Hamstead wrote:
>> Hi All
>>
>> Its easy enough to add a rule to the exim config to always reject
>> connections which HELO ylmf-pc. However they still seem to hammer away.
>>
>> Has anyone come up with anything slick to block the ip address of
>> clients that make a ylmf-pc request?
>>
>> Log tailing would be ok, but it seems that an external program could
>> fairly easily be called (denyhosts or similar)
>>
>> Dean
>>
>