On 08/07/2010 05:40 AM, Dennis Carr wrote:
> 
> 
> On Fri, 6 Aug 2010, junkyardma...@verizon.net wrote:
> 
>> See Zip Attachment
>>
> 
> I see it.  What is this?

quite a weird post, indeed.

Looks like a fail2ban style tool, from one of the files in the zip:

-------CUT-------
# Postfix Real-Time Firewall

# What it Does
# Scrapes a specified number of log files, such as maillog[.n], for
postfix SMTP status messages typically
# attributed to spammers, such as failed DNS lookups for reverse PTR and
Real-Time Block List (RBL)
# to glean IP addresses from these SMTP status messages and add them to
iptables firewall chains.

# Once a log file is rotated beyond the specified number of log files to
scrape, the IP addresses previously
# gleaned from that log file and add to an iptables firewall chain, will
be removed from the iptables firewall
# chain when the script is next run.

# Dynamically utilizing iptables firewall capabilities in this manner to
automate blocking known detected
# spammers at the network firewall level rather than at the application
level (SMTP) has two main benefits.
# 1) Mail log file size is greatly reduced so they are more manageable.
# 2) Reduced number of DNS lookups for reverse pointer (PTR), Real-Time
Block Lists (RBL) records, etc.
-------CUT-------

-- 
Udo Rader, CTO
http://www.bestsolution.at
http://riaschissl.blogspot.com

Reply via email to