Here the complete config:
LIM = 200
PERIOD = 1h
WARNTO = alert@???
EXIMBINARY = /usr/sbin/sendmail -f root
SHELL = /bin/sh
deny ratelimit = 202 / 1h / strict / per_addr / ${domain:$authenticated_id}
message = Your account has sent over 200 messages per hour -
logwrite = RATE USER EXCEEDED: $authenticated_id -> $sender_rate/$sender_rate_period (max $sender_rate_limit)
accept authenticated = *
set acl_m_user = $authenticated_id
condition = ${if exists{$spool_directory/blocked_authenticated_users}}
condition = ${lookup{$acl_m_user}lsearch{$spool_directory/blocked_authenticated_users}{1}{0}}
control = freeze/no_tell
control = submission/domain=
add_header = X-Authenticated-As: $acl_m_user
logwrite = RATE USER 100 invalid recipients during 1h: $authenticated_id $sender_rate/$sender_rate_period (max $sender_rate_limit)
accept authenticated = *
!verify = recipient/defer_ok/callout=10s,defer_ok,use_sender
ratelimit = LIM / PERIOD / per_rcpt / user-$acl_m_user
continue = ${run{SHELL -c "if ! grep -q $acl_m_user $spool_directory/blocked_authenticated_users ; then echo $acl_m_user >>$spool_directory/blocked_authenticated_users; \N{\N echo To: alert@???; echo Subject: [BLOCKED EXIM] user $acl_m_user blocked; echo; echo because has sent mail to LIM invalid recipients during PERIOD.; \N}\N | EXIMBINARY WARNTO ; fi"}}
control = freeze/no_tell
control = submission/domain=
add_header = X-Authenticated-As: $acl_m_user
logwrite = RATE USER SHELL: $authenticated_id
accept authenticated = *
control = submission/domain=
accept authenticated = fixed_login
accept hosts = 127.0.0.1
############################################################################################################################
I found the rule interesting but I do not understand if it applies to invalid containers or incorrect logins via smtp.
I would need a little help to understand the purpose of the rule, if someone is so kind to help me.
Regards,
