-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Gora Mohanty writes: > Hi,
> Once in a while (not too frequently yet), we seem to get > people probing our mail server by sending various commands > on the SMTP port. I have seen no evidence of an actual > issue, but what is best practice in this case? Should I > be bothered enough to blacklist the domain/email address? > The same domain/address rarely recurs. If you're planning to block, then maybe temporarily block or tarpit the IP address in firewall. Usually, MTAs won't do this kind of thing, only abusers. Or you can also use greylisting daemon, esp. spamd[1] (only works on *BSD) or postgrey/policyd (or other greylisting software) for postfix. Anyways, I'll prefer to block them in firewall instead of blocking them in application. References: [1] http://en.wikipedia.org/wiki/Spamd HTH - -- Ashish SHUKLA “To die hating them, that was freedom.” (George Orwell, "Nineteen Eighty-Four", 1949) Sent from my Emacs -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (FreeBSD) iQIcBAEBCgAGBQJPXMxMAAoJEMdGz6nnT6Sws5MP/jGTbne8taD0WTDAy+aj8d5c n2eXH/muf4vq726C6Oyxtwd4QzeJiHmR/bAivq8oN6chxKPOeF1JGq9wx+vvzRoy g3ZClQHblugam25NB3PkQuKG2VNZuJEYezS1wzZalcmALzmhp6PHx258ca+Y0NNQ V3/4R5c8chsqBWewt6+1DZ+c5CONufku+yE4yrJ5WHRUf7gY/ugUift2CCFvKAXN 3NI6C+LKSxnB+tIotshtda++0cUp/OEJv5EisWgYxbcOtWt7vRxhCsAK7/uvTZaK PobnWjPs9ZpBMvzWtDouRiUAHDlENyraBExX1zJYI0S7V1BPAnm+LRRhGW+tcr5y WwVHB7kxW1AJRGAPG4/mPIHkTSuqbuusuw/depQwVMxyRVOgLOOOP9W5aqpU7/0L mN4C83cJdHhh4SckHiNDpnH8ELP/sLIhm5pqBBJVbDnGnDU9vZ/Gif6HxI1lDVi5 sQ/sRpkA6csX8Bjpz5RgQROmxm2zMdXm6mJb+m8IKfxadCKsQFDzNQoH97yQ41Qp nGc5Wt4fyTqzMc02tFRN0RSLgwBHdT2dWioqBNq3Yb2bUyl73bhqjUaHRYboidsX //hGSwLm1BBRalSE4cRglQdg0+AC8xqnOd22RaWCEwiJzNccI5ZSgQo+/MF3uzI5 A+71SYNX1jOUiRtnKYah =SMLX -----END PGP SIGNATURE----- _______________________________________________ Ilugd mailing list [email protected] http://frodo.hserus.net/mailman/listinfo/ilugd
