[exim] block hacker helo's

Top Pagina
Deze boodschap maakt deel uit van devolgende draad:
M+\de volledige draad-boom gesorteerd op datum
MMM 
Jeremy Harris op ->
Delete this message
Reply to this message
Auteur: Andy Smith
Datum:  
Aan: exim-users
Oude Onderwerpen: [exim] rDNS lookup problem
Onderwerp: [exim] block hacker helo's
Hi list,

I've already configured fail2ban to block brute force attacks on my
Exim server but thought it would be nice to be able to block outright
known abusive helo's. So I've had a dig and I came up with this config:

# Blacklist
auth_advertise_hosts =\
${lookup{$sender_helo_name}\
lsearch{/usr/local/etc/exim/heloblocks}{}{*}\
}

But it doesn't seem to work so I'm hoping someone can give me a pointer.


Also I have a general doubt, when using the term advertise in Exim does
this mean purely to advertise funcionality or does it actually mean to
provide or not that funcionality? Ie am I actually blocking auth by not
advertising it, when talking about an abusive connection that isn't
following the RFCs etc?

thanks in advance, Andy.
Deze boodschap werd naar devolgende mailinglijsten gestuurd:
Exim-users
Mailing Lijst Info | Nabije Berichten		<-Re: [exim] block replies onlyRe: [exim] block hacker helo's->
Tahini and Hummus and Cumin Development Archives beheerd door cumin AdminsLurker (versie 2.3)