Re: XMPP SPAM

[Simon Josefsson]

Sergio Durigan Junior  writes:

> On Monday, November 09 2015, Simon Josefsson wrote:
>
>> I'm running my own jabberd2 server since a couple of months.  For the
>> past 2-3 weeks I've been starting to receive XMPP spam (a couple of
>> times per week).  Is there some configuration that could help here, or
>> do how people handle this?  Sample s2s log output below (IP and hostname
>> of spammer de-identified; josefsson.org is my domain, jabber.spammer.net
>> is the remote server).
>
> fail2ban is a good solution for this.

What would the rule to detect spam be?  Perhaps I would want
spamassassin (or something similar) to be run on the content, and after
that trigger a fail2ban rule.  I haven't been able to find any guides on
doing this out there though.

/Simon


signature.asc
Description: PGP signature

Re: XMPP SPAM

[Greg Troxel]

Simon Josefsson  writes:

> I'm running my own jabberd2 server since a couple of months.  For the
> past 2-3 weeks I've been starting to receive XMPP spam (a couple of
> times per week).  Is there some configuration that could help here, or
> do how people handle this?  Sample s2s log output below (IP and hostname
> of spammer de-identified; josefsson.org is my domain, jabber.spammer.net
> is the remote server).

I wonder if greylisting could help.  I almost never receive incoming
jabber messages from people that I don't already have on a roster.  So a
delay of 30m would be ok for new presence requests.  But I realize that
kind of breaks the I in IM.

Another thought is an IP-address-based RBL, like the ones used for spam.


signature.asc
Description: PGP signature