At 10:47 PM 11.10.2002 +0700, budsz wrote:
>On Sun, Nov 10, 2002 at 08:32:35AM -0600, Jack L. Stone wrote:
>>Sorry again.... only one sip of coffee yet. The ${oif} and ${fwcmd} are
>>both my own defined variables at the beginning of my FW script. Just
>>replace these variable commands with your own script setup cmds. I thought
>>you were already running a script.....
>
>How about if we use like spamassassin program it's will terminate this
problem?
>
>--
>budsz
>
You are only referring to a fix for emails. My FW rule stops the intruder
from using any other services as well... like using up bandwidth though the
web server, etc... DoS....
Of course, if the intruder is persistant enough, he(she) may switch IPs,
even entire IP network to get around the block. But, you just need to keep
some monitors going on all of the key logs to watch for this intrusion and
modify the block to include more IPs.... the block can be modified more
times than he(she) can change IPs eventually.....
Best regards,
Jack L. Stone,
Administrator
SageOne Net
http://www.sage-one.net
[EMAIL PROTECTED]
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message
