On 08/27/2013 06:51 AM, Dan McAllister wrote:
DELETE THE ACCOUNT??? OUCH!
Personally, since most compromised accounts had weak passwords to begin
with, I change their password (usually to "SUSPEND-%DATE%" with the date
field entered by the script I use. The reason I don't just use the -s
trick is that I WANT the user to see QUICKLY that their account has been
affected (as-in, failing at their next IMAP/POP login attempt). The call
to resolve why they cannot receive mail anymore puts them in early
contact with me, when I can:
a) make them do a virus/malware scan, and
b) make them choose a better password (and, when appropriate, enable SSL)
Just my 2-cents worth... but I must say, if I found my ESP deleted my
account because I got an e-mail worm and didn't catch it until their
deletion of my account (and ESPECIALLY if I lost data because of it), I
would be looking for another ESP!
Dan
IT4SOHO
QMT DNS/Mirror Admin
I like.
--
-Eric 'shubes'
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
