Ricardo Kleemann wrote: > > I was thinking of writing a filter module for DOS prevention. Basically > it would check against bombs either from an IP or to a recipient, and > essentially would either throttle (defer and delay) or reject.
Effective DOS prevention probably needs to be done earlier than the filters. Courier already has concurrency limiting, but not rate limiting. You can do rate limiting with iptables. The only thing you can't effectively rate limit early on is per-recipient messages. > My question is, does courier already have something built-in for these > types of DOS attacks? If not, I'll just write the module and contribute > it to the list. > > BTW, I've adapted an existing Greylist module by Alun Jones, > [EMAIL PROTECTED], to work within the Courier::Filter::Module framework, if > anyone is interested I can post it here. Can't help pointing out that rate limiting and greylisting are already implemented in pythonfilter. ;) ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
