* Julio Cesar Covolato (ju...@psi.com.br) [090514 07:26]: > Hi! > > I made a litle shell script to stoping bootnets and zombis, and I want > know what you think about it. > > The purpose is drop via iptables hosts that are rejected several > times in a litle space of time, reading the log generated by postfix. > > Tested in a Linux box. > > The script is so poor, but it's functional! I think that using perl > will be very better ( Anyone? I'm very bad in perl, sorry!). > > Just download, untar, configure (optional), and run it by comand line > for a few minutes, and see the show!!!!!!! > > The idea is block via firewall the connections that is garbage. Test it!! > > Download pf-ip-killer : > > http://psi.com.br/~julio/postfix/pf-ip-killer.tgz
this could be done with the "recent" module for iptables. that would take care of everything this script does (minus the pruning after one or two hours). if that could be done, too, all this could be a static iptables configuration.
