Do you know for sure that they're coming from an external source? Could it be an infected machine that's sending them?
In either case, I don't know of a way to throttle a user's activity. I would check the logs for the offending account(s), and change the password(s). Also, be sure that no passwords are ever sent in the clear. I wouldn't expect that fail2ban would be of much help, as there's no failure. I could be wrong about this though. I like the way that gmane.org handles this sort of thing. It throttles user submissions such that it only allows one message to be relayed every 5 minutes per account. It does accept them, but simply queues them up and sends them on at a slower pace. I'd like to see a patch to qmail-remote that would do such a thing, but I'm not aware of one. Wouldn't be too terribly difficult to code I would think. -- -Eric 'shubes' On 07/18/2011 07:32 PM, Carlos Herrera Polo wrote: > fail2ban maybe ? With special rules I think it can help you > > > > 2011/7/18, BC<bc...@purgatoire.org>: >> >> Is this what the "tar pit" option in qmail is suppose to do? >> >> >> On 7/18/2011 11:00 AM, spamdyke-users-requ...@spamdyke.org wrote: >>> I would like to know >>> if spamdyke can block relay if the client is trying to send a lot of >>> email in a small period of time or something else that can ease this >>> problem. >> _______________________________________________ _______________________________________________ spamdyke-users mailing list spamdyke-users@spamdyke.org http://www.spamdyke.org/mailman/listinfo/spamdyke-users
