On Feb 19, Mark Elkins via Exim-users wrote > What can you do? Not everyone uses my relay - so I have a flag that needs to > be first switched on for the relay authentication to work. I also insist > that passwords are reasonably long and not based on the username. I build a > list every few months and check it. I guess the next step is to insist the > password is changed periodically.
Install Fail2Ban > Lastly, users often use the same password for multiple purposes and every > now and then, there is a mass breach at some company. These nefarious people > use that info to also break into my mail servers. Lastly, my customers are > human and may be duped into giving out their password with social > engineering. All these are good reasons for forcing periodical password > changes. But it won't help here. Perhaps as suggested in a follow up post, get Fail2Ban to monitor for these trigger addresses and then block the account that way? Thanks, Richard -- junix.systems/privacy -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/