Just recently I had my mail server swamped by a single virus machine that kept resending a virus message, ignoring my 5xx rejection code.
Is it possbile to block this via an iptables smtp max connection throttle code?
How do you handle this? Via iptables?, or via qmail/postfix/exim/sendmail internal coding?
Does anyone else encounter this problem on a regular basis? How do you solve this?
Check out http://www.spamshield.org/ a perl script that monitors the smtp's (like sendmail) logs for unusual events, and on a set amount of mail received from a single IP, takes action and informs via email, usually it sets up an invalid route to the offending spammer, effectively blocking any contact with that machine, but it can be configured to do anything.
José
PS please reply to the list
-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
