Auteur: Richard Jones Date: À: Mark Elkins via Exim-users Sujet: Re: [exim] Spam though my server
On Feb 19, Mark Elkins via Exim-users wrote > What can you do? Not everyone uses my relay - so I have a flag that needs to
> be first switched on for the relay authentication to work. I also insist
> that passwords are reasonably long and not based on the username. I build a
> list every few months and check it. I guess the next step is to insist the
> password is changed periodically.
Install Fail2Ban
> Lastly, users often use the same password for multiple purposes and every
> now and then, there is a mass breach at some company. These nefarious people
> use that info to also break into my mail servers. Lastly, my customers are
> human and may be duped into giving out their password with social
> engineering. All these are good reasons for forcing periodical password
> changes.
But it won't help here. Perhaps as suggested in a follow up post, get
Fail2Ban to monitor for these trigger addresses and then block the
account that way?