Autor: Cyborg Data: A: exim-users Assumpte: Re: [exim] Closing off Port to non-SSL traffic
Am 24.06.22 um 08:08 schrieb Slavko via Exim-users: > That is pretty simple, just add this IP to firewall's DROP. To automatize
> its banning, use fail2ban. But be aware, that they will often try from
> other IP soon. I have 100 - 800 different IPs per day, most of them
> has only one attempt allowed here, it is some thousands of IPs in last
> 24 days (maximum ipset timeout) from whole word. In the past, some admins usedtar pitts , once you recognized an
offending ip,
your drop the connection rate to 1 bps . That way they can't harm anyone
else
and don't recognize automatically, that you banned them, because the
connection
doesn't get closed ;)