I think you are trying to put a band aid on a bigger problem.
Are you sure that it is a number of hacked accounts and not a hacked
machine?
Are you sure your mail server has not been turned into a spambot?
If they know the passwords they learned them one of three ways, with a
sniffer, which
Hello,
I have a lite gateway client that uses a database of IPs locations to
screen out any countries before they get to iMail. Really cut down on
the CPU load and still works well with Message Sniffer.
http://sssolutions.net/ew/
The process might be used to screen any activity from Nigeria
I can't readily think of a more appropriate place to perform these
checks, except maybe by modifying the Imail Web interface itself to
use a geolocation database, but I'm not sure if that's even
possible.
You're talking about a task typically done by an ISAPI filter on the
box
David E. Smith wrote:
Anyone know of a way to apply DNS blacklists to a Web site in IIS
I do not know of a way to do it dynamically, but you could blacklist
the ip space of ng.blackholes.us? Another kludge is if you have samples
of the spam they send and can pattern it then you can delete it
Nick Hayer wrote:
I suppose I could start filtering all my network's outgoing mail - my
Imail server, and a few other ones, all smarthost/gateway their email
through one central server here, basically for ease of logging. I
could make that server start spam-scanning too, if I had to. I'd
David
I'm guessing you are behind a firewall, I hope so.
Why not go in and block the address range at the firewall and leave it at
that. I've had some pretty nasty people do the same thing you're seeing and
ended up at this. I had some luck with declude and message sniffer, but
these sort of folks
Nick Hayer wrote:
I do not know of a way to do it dynamically, but you could blacklist
the ip space of ng.blackholes.us? Another kludge is if you have
samples of the spam they send and can pattern it then you can delete
it before it is sent.
That's an awful lot of address space, probably a
Steve Guluk wrote:
Hello,
I have a lite gateway client that uses a database of IPs locations to
screen out any countries before they get to iMail. Really cut down on
the CPU load and still works well with Message Sniffer.
I don't see how this would work - the mails are coming from
John Doyle wrote:
Why not go in and block the address range at the firewall and leave it at
that. I've had some pretty nasty people do the same thing you're seeing and
ended up at this. I had some luck with declude and message sniffer, but
these sort of folks are pretty agile and hard to stop.
Hi David,
David E. Smith wrote:
I suppose I could start filtering all my network's outgoing mail - my
Imail server, and a few other ones, all smarthost/gateway their email
through one central server here, basically for ease of logging. I
could make that server start spam-scanning too, if I
maill...@actmail.com wrote:
Are you sure that it is a number of hacked accounts and not a hacked
machine?
Yup. So far, every one of these end-users has brought their desktop by
the office, and we've found keyloggers and spyware on every one of 'em.
I've also conducted the usual checks on
11 matches
Mail list logo
