On 2024-05-29 at 10:02:59 UTC-0400 (Thu, 30 May 2024 00:02:59 +1000)
Viktor Dukhovni via Postfix-users <postfix-users@postfix.org>
is rumored to have said:
[...]
I'd be curious to hear whether you'll find much AUTH brute-force
activity from SBL + CSS (and not XBL) and as mentioned previously,
blocking based on PBL is not viable for most submission servers
with users on dynamic IPs.
CSS frequently lists addresses which engage in cred-stuffing. Very often
these are in cheap cloud VM provider ranges, so simply blocking whole
networks from accessing authenticated services at the packet level
usually works.
--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo@toad.social and many *@billmail.scconsult.com
addresses)
Not Currently Available For Hire
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
