On 31 Oct 2018, at 17:12, Noel Jones wrote:
Postscreen *should not* be used on ports used for client
authenticated SMTP.
Generally, this has been true...
However, I have recently seen spambots using compromised accounts on
port 587 without properly waiting for the greeting banner. This was on a
Sendmail installation, which already (inadvertently) had a GreetPause
applied to port 587.
I intend to experiment with postscreen on 587 on the next Postfix system
I work with where compromised accounts are a problem. I hope that by
then someone else will have pioneered that tactic and worked through all
the pitfalls here.
--
Bill Cole
b...@scconsult.com or billc...@apache.org
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)
Available For Hire: https://linkedin.com/in/billcole
