Re: [exim] Spam though my server

Página Principal
Apagar esta mensagem
Responder a esta mensagem
Autor: Richard Jones
Data:  
Para: Mark Elkins via Exim-users
Assunto: Re: [exim] Spam though my server
On Feb 19, Mark Elkins via Exim-users wrote
> What can you do? Not everyone uses my relay - so I have a flag that needs to
> be first switched on for the relay authentication to work. I also insist
> that passwords are reasonably long and not based on the username. I build a
> list every few months and check it. I guess the next step is to insist the
> password is changed periodically.


Install Fail2Ban

> Lastly, users often use the same password for multiple purposes and every
> now and then, there is a mass breach at some company. These nefarious people
> use that info to also break into my mail servers. Lastly, my customers are
> human and may be duped into giving out their password with social
> engineering. All these are good reasons for forcing periodical password
> changes.


But it won't help here. Perhaps as suggested in a follow up post, get
Fail2Ban to monitor for these trigger addresses and then block the
account that way?

Thanks,

Richard

--
junix.systems/privacy