Autor: Cyborg Datum: To: exim-users Betreff: Re: [exim] protecting privileged users from SMTP-AUTH attacks
Am 02.12.19 um 11:08 schrieb Jeremy Harris via Exim-users: >> Is it possible to detect it in an ACL before exim itself rejects the
>> client by the default number of protocol violations?
> Detect what, precisely?
That an ip is trying to abuse the auth mechanics and producing a lot of
"protocol synchronization error" messages,
as normal clients won't do.