>> Thanks Sam, never had to look at this stuff before. We had a phishing >> spam >> where just one client answered with her auth details and in about 8 >> hours >> 660K spams were sent via her account before I manually blocked the >> sending IP >> and cancelled the mailq messages. Normal users would never be sending at >> 80K >> per hour... ... >> Anyone have any suggestions how to prevent this kind of abuse?
> There's nothing there that can be readily used for something like this. I > suppose one can hack up a perlfilter script that counts messages from each > authenticated user. I use fail2ban (http://www.fail2ban.org/) for that purpose. You can set your log line regexps, and it works! -- Dino Ciuffetti Linux System Administrator and Architect TuxWeb S.r.l. - http://www.tuxweb.it/ ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
