Re: [exim] block hacker helo's

Top Page
This message is part of the following thread:
M+\the complete thread tree sorted by date
MMMkuncho pencho at <-
 
Delete this message
Reply to this message
Author: Andy Smith
Date:  
To: exim-users
Subject: Re: [exim] block hacker helo's
On 2017-02-07 13:04, Andy Smith wrote:

> # Blacklist
> auth_advertise_hosts =\
> ${lookup{$sender_helo_name}\
> lsearch{/usr/local/etc/exim/heloblocks}{}{*}\
> }

thanks for those that replied, sorry for the late reply. In case its
useful to anyone, I can confirm my original code does work, I either
didn't have it in the right place in the config or was confused when
testing this (ie "help" still shows auth option).

Seeing this in the logs for banned "helo"s:

2017-02-17 10:56:08 [16587] SMTP protocol error in "AUTH LOGIN" H=(User)
[94.102.56.181]:12124 I=[x:x:x:x]:25 AUTH command used when not
advertised

thanks, Andy.
This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] outbound discard all filter for cpanel twisted eximRe: [exim] outbound discard all filter for cpanel twisted exim->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)