> -----Original Message----- > From: mailop <[email protected]> On Behalf Of Michael Peddemors via > mailop > Sent: Friday, June 4, 2021 2:24 PM > To: [email protected] > Subject: Re: [mailop] Malware waves from hotmail.com > > With apache, you can use modsecurity quite easily, and you can block all > azure (and other cloud providers ranges) from certain services like > wordpress, or contact forms etc.. (you can even do dns based checks or rbldnsd) .. > > Unless desktop in the cloud becomes more prevalent, you should make sure that > resources designed to be accessed by end users only, dont accept connections > from potentially compromised servers, or the bad actors throwing up relays.. > > and yes, Azure, Googlecloud, Amazon threat activity is severely on the rise
I would just add, that if possible block access to xmlrpc.php I think there is a rule included in modsec, but I just disable it outright if not needed. _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
