Am 27.07.2012 13:55, schrieb Christian Rohmann: > Hello postfix-users, > > I'm looking for a way to limit the time or the number of messages an > established smtp authenticated session can be used for. I already have > rate limiting (anvil for anti-dos and policy delegation for maintaining > a quota per hour) in place. > But if I lock a (hacked) user account and prohibit further smtp auth > logins, an established connection can still be used to send messages.
"smtpd_recipient_limit" may help a little bit to prevent users CC'ing their whole address-book but there is AFAIK no limit for messages over successfull authenticated connection, in the case of a hacked account you are lost and have to disable the account instead try to solve the result of the root cause
signature.asc
Description: OpenPGP digital signature
