On 8/11/07, Matthew Harrell <[EMAIL PROTECTED]> wrote:
> Oh and the "attacks" that I've been noticing like this are, as John calls
> them, blowback from spam run. They're all to fake addresses on my domains
> but the majority of them are from postmaster at what look like valid servers
Sometimes
On 11-Aug-07, at 1:34 PM, Brian Szymanski wrote:
Matt Sergeant wrote:
On 10-Aug-07, at 9:13 PM, Brian Szymanski wrote:
Does anyone have any ideas for dealing with a DDOS?
[snip]
We're currently using forkserver - is it possible that we'd have
better
luck with Apache::Qpsmtpd or pollserver
Matt Sergeant wrote:
> On 10-Aug-07, at 9:13 PM, Brian Szymanski wrote:
>
>> Does anyone have any ideas for dealing with a DDOS?
> [snip]
>> We're currently using forkserver - is it possible that we'd have better
>> luck with Apache::Qpsmtpd or pollserver?
>
> Yes :-)
>
> Either would be "better" f
> If this is a true DDOS, and not just blowback from a distributed spam run, the
> hosts that are hitting you are very likely to be zombies located on dynamic
> blocks, *not* legitimate e-mail servers. Your risk of blocking legitimate
> e-mail should be very low (i.e. I have not, in the last month
> I know a few organizations that have been dealing with this problem
> recently. At apache we had the same problem, but dealt with it by
> writing a check_goodrcptto plugin to check for valid recipient
> addresses, since all the bounces were directed at fictitious
> apache.org addresses.
>
> With
On Fri, 2007-08-10 at 21:13 -0400, Brian Szymanski wrote:
> Simple things like increasing limit-connections don't seem to do much.
> We also have a plugin which keeps a record of which IPs are sending
> bogus emails by incrementing that IPs count in a DBM file each time it
> early_talks or check_ba
Brian Szymanski wrote:
> Does anyone have any ideas for dealing with a DDOS? We're currently
> getting slammed with bogus bounce messages to the tune of 1.5 million a
> day, and it's hard for regular clients to get a word in edgewise. We've
> made sure all of our clients are using SSL instead of T
[EMAIL PROTECTED] (Brian Szymanski) writes:
> Hi folks...
>
> Does anyone have any ideas for dealing with a DDOS? We're currently
> getting slammed with bogus bounce messages to the tune of 1.5 million a
> day, and it's hard for regular clients to get a word in edgewise. We've
> made sure all of
On 10-Aug-07, at 9:13 PM, Brian Szymanski wrote:
Does anyone have any ideas for dealing with a DDOS?
[snip]
We're currently using forkserver - is it possible that we'd have
better
luck with Apache::Qpsmtpd or pollserver?
Yes :-)
Either would be "better" for dealing with the load. What's y
