On 15/11/2019 05:10, Fourhundred Thecat wrote: > On 15/11/2019 06.06, Jeffrey 'jf' Lim wrote: >> >> ok then this makes sense. I've seen bots retry multiple passwords at >> one go in the past; Fourhundred are all of these "auth=0/1"? > > yes, all are "auth=0/1". > > I have disabled auth on port 25, and I am using non-standard port for > client authentication. > Disabling auth does not stop them from trying; I scan my logs for the string "auth=0/1", and add the offending IP address to a blacklist - a do-it-yourself fail2ban. Allen C
- lots of connections that make no sense Fourhundred Thecat
- Re: lots of connections that make no sense Fourhundred Thecat
- Re: lots of connections that make no sense Viktor Dukhovni
- Re: lots of connections that make no sense Jeffrey 'jf' Lim
- Re: lots of connections that make no sense Fourhundred Thecat
- Re: lots of connections that make no s... Allen Coates
- Re: lots of connections that make... Dominic Raferd
- Re: lots of connections that make... Jeffrey 'jf' Lim
- Re: lots of connections that ... Wietse Venema
- Re: lots of connections t... Allen Coates
- Re: lots of connections that ... Bill Cole
- Re: lots of connections t... Jeffrey 'jf' Lim
- Re: lots of connections t... Bill Cole
- Re: lots of connections that make... @lbutlr
- Re: lots of connections that ... Allen Coates
- Re: lots of connections that make no sense Fourhundred Thecat
