[exim] block hacker helo's

Startseite
Diese Nachricht ist Teil des folgenden Threads:
M+\Der komplette Thread sortiert nach Datum
MMM 
Jeremy Harris am ->
Nachricht löschen
Nachricht beantworten
Autor: Andy Smith
Datum:  
To: exim-users
Alte Treads: [exim] rDNS lookup problem
Betreff: [exim] block hacker helo's
Hi list,

I've already configured fail2ban to block brute force attacks on my
Exim server but thought it would be nice to be able to block outright
known abusive helo's. So I've had a dig and I came up with this config:

# Blacklist
auth_advertise_hosts =\
${lookup{$sender_helo_name}\
lsearch{/usr/local/etc/exim/heloblocks}{}{*}\
}

But it doesn't seem to work so I'm hoping someone can give me a pointer.


Also I have a general doubt, when using the term advertise in Exim does
this mean purely to advertise funcionality or does it actually mean to
provide or not that funcionality? Ie am I actually blocking auth by not
advertising it, when talking about an abusive connection that isn't
following the RFCs etc?

thanks in advance, Andy.
Diese Nachricht wurde auf der folgenden Mailing-List gepostet:
Exim-users
Mailing-List-Info | Nachrichten um die Zeit		<-Re: [exim] block replies onlyRe: [exim] block hacker helo's->
Tahini and Hummus and Cumin Development Archives administriert von cumin AdminsLurker (Version 2.3)