> > When I say "tarpit" I don't mean an MTA-native "slow the SMTP > conversation down" model, I mean a genuine TCP tarpit that plays games > with window sizes to trap the attacker - that's what LaBrea does. > > I don't think the MTA should be tasked with tarpitting. Tarpitting is > a job for a dedicated tool. The most an MTA should do along these > lines is slowing responses after X number of bad recipient addresses > appear (assuming you don't simply terminate the session). > > But this doesn't really have much to do with SA... > > -- > John Hardin KA7OHZ http://www.impsec.org/~jhardin/
John and others... Ok, now I need clarification please.. So you are saying this external to the MTA tarpitting process will not affect the server SMTP system and subsystems overall functionality? - rh
