On 13-Jun-2000, Michael Boyiazis wrote:
> Unfortunately I have a few spams to prove it in my mail box
> and records of a huge amount of bounces (from all the
> users that didn't exist on our end). And our access provider
> was able to wipe that user off their dialups (eventually). Plus,
> we log the from-IP and recipient email address in qmail-smtpd
> and sender and recipient list in qmail-queue. All pointed to
> that IP and an empty sender/from.
Try running tcprulescheck to see if that IP is rejected by your cdb
file. I'm afraid that's about as far as I can help.
You might want to consider using rblsmtpd to block connections from
dialups listed in DUL (http://mail-abuse.org/dul). I know most people
use a combination of RBL + RSS + DUL, and I think it's a good rule of
thumb.
Ronny
