On 08/07/2010 05:40 AM, Dennis Carr wrote: > > > On Fri, 6 Aug 2010, junkyardma...@verizon.net wrote: > >> See Zip Attachment >> > > I see it. What is this?
quite a weird post, indeed. Looks like a fail2ban style tool, from one of the files in the zip: -------CUT------- # Postfix Real-Time Firewall # What it Does # Scrapes a specified number of log files, such as maillog[.n], for postfix SMTP status messages typically # attributed to spammers, such as failed DNS lookups for reverse PTR and Real-Time Block List (RBL) # to glean IP addresses from these SMTP status messages and add them to iptables firewall chains. # Once a log file is rotated beyond the specified number of log files to scrape, the IP addresses previously # gleaned from that log file and add to an iptables firewall chain, will be removed from the iptables firewall # chain when the script is next run. # Dynamically utilizing iptables firewall capabilities in this manner to automate blocking known detected # spammers at the network firewall level rather than at the application level (SMTP) has two main benefits. # 1) Mail log file size is greatly reduced so they are more manageable. # 2) Reduced number of DNS lookups for reverse pointer (PTR), Real-Time Block Lists (RBL) records, etc. -------CUT------- -- Udo Rader, CTO http://www.bestsolution.at http://riaschissl.blogspot.com
