> -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On > Behalf Of Scott Williams > Sent: Thursday, December 18, 2003 11:10 PM > To: Scott Williams > Cc: Spamassassin-List > Subject: [SAtalk] Spammer causing Denial Of Service > > I was looking at the SA logs and noticed how a spammer would > open up multiple sessions all to one target address. He > opened 15 sessions in 10 seconds and proceded to hold them > for 5 minutes until I timed out on the connections. So for 5 > minutes my filter was essentially rendered useless since I > limit it to 15 simultaneous connections due to hardware limitations. > > Has anyone else seen this? What would be the best solution > to combat this? > > >
I've seen this before. I'm not sure if it is malicious, or they are just trying 30 different email address all at the same time. I just block them at the router/gateway level on a per IP basis. Scott ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
