Hello, i'm using ASSP version 2.0.1(3.2.15) under Opensuse 11.4. I changed for a week following Parameters: denySMTPstrictEarly Enabled denySMTPConnectionsFromAlways file:files/denyalways.txt
I take a look at my logfiles and see the following Entries. blocked by denySMTPConnections or droplist strict: 2.0.0.0/8 (blocked by denySMTPConnections strict '2.0.0.0/8') and so on..... ok in files/denyalways.txt this ip is located and so assp block it by denySMTPConnections. My question: is this only an excample File and need be modified? or who maintain this file? I take a look at my Logfiles and to a grep to "blocked by denySMTPConnections" and i've seen a lot of mails what are definitely not spam (and are blocked by denySMTPConnections ) others where spam.... 1.0.0.0/8 # bogon 2.0.0.0/8 # bogon 5.0.0.0/8 # bogon 14.0.0.0/8 # bogon 23.0.0.0/8 # bogon 27.0.0.0/8 # bogon 36.0.0.0/8 # bogon 39.0.0.0/8 # bogon 41.129.0.0/22 # AS24863 EG/EG LINKdotNET-AS 41.130.52.0/22 # AS24863 EG/EG LINKdotNET-AS 41.131.244.0/22 # AS24863 EG/EG LINKdotNET-AS 41.199.0.0/16 # AS15475 EG/EG NOL ............. What mean this bogon? Any ideas, Thx in advance ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity and more. Splunk takes this data and makes sense of it. Business sense. IT sense. Common sense. http://p.sf.net/sfu/splunk-d2dcopy1 _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
