On Thu, 24 Mar 2011 18:51:16 +0100, Patrick Ben Koetter
<p...@state-of-mind.de> wrote:
* Victor Duchovni <postfix-users@postfix.org>:
On Thu, Mar 24, 2011 at 02:07:43PM -0300, Odilo Schwade Junior
wrote:
> It is not my IP address. I don't know if it's a zombie.. I just
think it may
> be.. XXX.XXX.XXX.XXX = random IPs address. Most of Brazil,
Portugal
> and US as I said earlier.
You can restrict SASL to TLS only, then perhaps fewer zombies will
bother.
If you get SASL attempts from TLS-enabled zombies, just make sure
your
passwords are strong enough to not succumb to easy dictionary
attacks.
You can also use fail2ban to ban (iptables) clients that have X
unsucessful
SASL login attempts.
A friend implemented that Method on my Server. It works like a charme.
p@rick
