Hi, I've just migrated a 900-mailbox mailserver from qmail to courier. Unfortunately this server is continuosly contacted by spammer smtps that load the machine and/or leave connection open forever. It's like a continuos Ddos: about 1 to 7 connections every second.
To be able to control this "spam Ddos" with qmail, I used "rblsmtpd" (part of ucspi-tcp tools) which blocks blacklisted IPs as soon as they connect to the server, this worked great. With courier it seems that this is not possible: every connection gets aswered, and only after receiving smtp commands they get "blacklisted". Maybe this is a software design to permit smtp authentication, but in my case I need something more "frontal". I've set esmtptimeout, esmtptimeoutconnect, esmtptimeoutdata to 30, 30 and 60; configured MAXDAEMONS=400 in esmtp.... but this is not sufficient. Any ideas? Thanks, Sandro ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
