Lately I've been seeing a lot of attempts at harvesting a mail server directory in my postfix mail log .. like 500 bounced messages to slightly similar addresses ([EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], etc). I've been trying to find a way to detected and stop (preferably in real time) these attempts at directory harvesting. I saw in a post from a while ago, Len said he got postfix to block DHAs with a combination of filters, so I'm optimistic that there is a solution. I've explored using smtp_soft_error, smtp_hard_error, etc directives but I found that it didn't discourage people on a per-session/client basis when there was a problem ... it made my postfix box disconnect EVERYONE after a certain amount of errors were reached. Anyhow, if someone could give me some pointers on how to stop these wankers, I'd be much appreciative :) Thanks in Advance.
Billy Kimble, System Administrator ebase, LLC
