aku pakai zimbra gak and ada gak issue mcm tu..but aku ada on feautre lock the account after 3 or more attempt. but the problem still occured but not to frequent..
aku rasa punca dia salah satu is..our own user yang set password yang terlalu lemah and also response pada email phishing yang mtk username and password.. aku penah jumpa solution yg kene manually set pada postfix zimbra just allow certain2 email je yang bole anto ke mailing list semua kakitangan tu..(rasanya dalam zimbra 7 dan ada feature tu kot) utk mx gateway pakai watchguard...still perkara sama jadi and ada spam2 yg terlepas gak.. On Tue, Sep 20, 2011 at 3:10 PM, Hanif Nordan <[email protected]> wrote: > betul gak tu.. bahaya gile :D > > > On Tue, Sep 20, 2011 at 2:56 PM, Sharuzzaman Ahmat Raslan < > [email protected]> wrote: > >> spam terlepas tak per... ni spam menggunakan account kita, pas tu hantar >> kat bos dan staff lain... >> >> masuk opis jer orang pandang semacam... :D >> >> rupanya password kena brute-force :) >> >> >> >> >> On Tue, Sep 20, 2011 at 2:52 PM, Hanif Nordan <[email protected]>wrote: >> >>> aku pakai ironport pun kadang2 beribu2 email spam terlepas.. :D >>> hehehee... >>> >>> >>> On Tue, Sep 20, 2011 at 12:34 PM, Sharuzzaman Ahmat Raslan < >>> [email protected]> wrote: >>> >>>> zimbra have option to lock the account after 3 or more attempt. please >>>> enable that feature. >>>> >>>> once your account is locked, you can be sure that someone out there is >>>> brute forcing your password. >>>> >>>> >>>> >>>> >>>> On Tue, Sep 20, 2011 at 12:26 PM, Umarzuki Mochlis >>>> <[email protected]>wrote: >>>> >>>>> >>>>> >>>>> 2011/9/20 Sharuzzaman Ahmat Raslan <[email protected]> >>>>> >>>>>> I have experience working with a web-based email system that a cracker >>>>>> brute-force the user password, and once they got the password, they >>>>>> login to >>>>>> the interface to send spam automatically. >>>>>> >>>>>> may I know what web interface that you use? >>>>>> >>>>>> change your password to something else using 20 random character. use >>>>>> KeePass if necessary. >>>>>> >>>>>> thanks for the tip. >>>>> >>>>> i'm using zimbra 7.1 >>>>> >>>>> -- >>>>> Regards, >>>>> >>>>> Umarzuki Mochlis >>>>> http://debmal.my >>>>> >>>>> -- >>>>> To unsubscribe from and detail about this group >>>>> http://portal.mosc.my/osdc-my-mailing-list-information >>>>> >>>>> OSDC.my Discussion Group In Facebook >>>>> http://www.facebook.com/groups/osdcmalaysia/ >>>>> >>>>> Malaysia Open Source Conference 2012 >>>>> MOSC2012 http://portal.mosc.my/ >>>>> >>>> >>>> >>>> >>>> -- >>>> Sharuzzaman Ahmat Raslan >>>> >>>> -- >>>> To unsubscribe from and detail about this group >>>> http://portal.mosc.my/osdc-my-mailing-list-information >>>> >>>> OSDC.my Discussion Group In Facebook >>>> http://www.facebook.com/groups/osdcmalaysia/ >>>> >>>> Malaysia Open Source Conference 2012 >>>> MOSC2012 http://portal.mosc.my/ >>>> >>> >>> -- >>> To unsubscribe from and detail about this group >>> http://portal.mosc.my/osdc-my-mailing-list-information >>> >>> OSDC.my Discussion Group In Facebook >>> http://www.facebook.com/groups/osdcmalaysia/ >>> >>> Malaysia Open Source Conference 2012 >>> MOSC2012 http://portal.mosc.my/ >>> >> >> >> >> -- >> Sharuzzaman Ahmat Raslan >> >> -- >> To unsubscribe from and detail about this group >> http://portal.mosc.my/osdc-my-mailing-list-information >> >> OSDC.my Discussion Group In Facebook >> http://www.facebook.com/groups/osdcmalaysia/ >> >> Malaysia Open Source Conference 2012 >> MOSC2012 http://portal.mosc.my/ >> > > -- > To unsubscribe from and detail about this group > http://portal.mosc.my/osdc-my-mailing-list-information > > OSDC.my Discussion Group In Facebook > http://www.facebook.com/groups/osdcmalaysia/ > > Malaysia Open Source Conference 2012 > MOSC2012 http://portal.mosc.my/ > -- To unsubscribe from and detail about this group http://portal.mosc.my/osdc-my-mailing-list-information OSDC.my Discussion Group In Facebook http://www.facebook.com/groups/osdcmalaysia/ Malaysia Open Source Conference 2012 MOSC2012 http://portal.mosc.my/
