All I can really say is welcome to the world of dictionary attacks. This is
par for the course for most of I think on the list.
#1 things that help that come to mind
using things like md_check_against_smtp_server or ldap checks
using bad_rcpt_throttle with sendmail and a program that monitors for this
and blocks them
using helo and invalid sender tests
configuring sendmail to drop people with pre-greeting traffic
Regards,
KAM
Anyone else seeing a lot of e-mail coming from different IPs, with
senders with yahoo addresses? [EMAIL PROTECTED], [EMAIL PROTECTED],
[EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], etc., etc. Almost all
of them are sending to invalid/unknown recipients on my domains and
mimedefang does a wonderful job with md_check_against_smtp_server(). Just
wondering if anyone has noticed this on their servers as well...
_______________________________________________
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list [email protected]
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
