Re: [exim] block hacker helo's

Top Page
Delete this message
Reply to this message
Author: Jeremy Harris
Date:  
To: exim-users
Subject: Re: [exim] block hacker helo's
On 07/02/17 12:04, Andy Smith wrote:
> auth_advertise_hosts =\
> ${lookup{$sender_helo_name}\
> lsearch{/usr/local/etc/exim/heloblocks}{}{*}\
> }
>
> But it doesn't seem to work so I'm hoping someone can give me a pointer.


Run some manual tests using "swaks" and, if needed, debug options
on the Exim command line.

> Also I have a general doubt, when using the term advertise in Exim does
> this mean purely to advertise funcionality or does it actually mean to
> provide or not that funcionality? Ie am I actually blocking auth by not
> advertising it, when talking about an abusive connection that isn't
> following the RFCs etc?


Auth attempts are not accepted unless advertised, unless the ACL
control allow_auth_unadvertised was used.
--
Cheers,
Jeremy