-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Ivan Ricotti wrote:
>> 1, Eliminate windows users from your network. > > Yeah! I really would like to! :D > Sadly, I can't... :'( There's a rule in my (Cisco) border router that allows only the DMZ mailserver to connect to port 25 outside my net. That would kill some of the things I've heard about (we don't have MS bits on our nets :-) And, if you're doing Linux, there's an iptables module called 'recent'. It's usually used to protect against brute force attacks from the 'Net, but it could be used on the incoming side of a packet filter on the DMZ mailserver to prevent huge emailings from inside: http://snowman.net/projects/ipt_recent/ http://www.newartisans.com/2007/09/neat-tricks-with-iptables.html And, of course, both IOS and recent/iptables can log the offenders and let you know who must be punished... - -- Glenn English g...@slsware.com -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAknLh+UACgkQ04yQfZbbTLbf8gCgp0qRtsuIJu+ChUuCd+/95/tZ uYgAnilK8EtNB7PKm2g7/swdF0hLSJVZ =PdOx -----END PGP SIGNATURE-----
