[exim] detecting overly frequent smtp from real user

Top Pagina
Deze boodschap maakt deel uit van devolgende draad:
M-+\de volledige draad-boom gesorteerd op datum
M\MM 
MMJeremy Harris op ->
Delete this message
Reply to this message
Auteur: Randy Bush
Datum:  
Aan: exim users
Onderwerp: [exim] detecting overly frequent smtp from real user
had a legit user user with weak password. someone cracked it and used
it to drive a lot of spam by smtping in with plain auth.

anyone have scripting to raise alerts if there is inbound smtp from a
legit user above some threshold?

i will also likely remove all user passwords from /etc/passwd (as shell
access is ssh key only anyway) and put passwords for legit smtpers into
`server_condition` in `authenticators`

randy

Deze boodschap werd naar devolgende mailinglijsten gestuurd:
Exim-users
Mailing Lijst Info | Nabije Berichten		<-Re: [exim] disable ipv6 for smtp to googleRe: [exim] detecting overly frequent smtp from real user->
Tahini and Hummus and Cumin Development Archives beheerd door cumin AdminsLurker (versie 2.3)