On Sun, May 04, 2008 at 06:24:22PM +0300, Khaled Hussein wrote: > Hi All, > > i am using Exim4 on FreeBSD 6.0, i have a problem that from time to time > one of my customers (we are ISP) send through my server a huge amount of > emails mostly to yahoo.com domain, so yahoo start deferring my server IP > and sometimes i change the IP address or wait till yahoo open it again, > so how can i make exim catch like these spams or attacks, because the IP > address of the sender is one of our IPs and his email address is correct > and exist on my server, so what is the best solution so i can catch > these attacks
These emails to yahoo are spam, right? If he does it again, kick him in the nuts. If he does it another time, kick him in the nuts once for each spam sent. Or if you prefer a more technical solution :-) you might want to try using "ratelimit". e.g. you could say each of your customers (identified by user ID if they authenticate, or IP if they don't) are rate-limited to 30 emails per hour, or 100 recipients per minute, or whatever you choose. It's a powerful option. http://www.exim.org/exim-html-current/doc/html/spec_html/ch40.html#SECTratelimiting -- Dave Evans http://djce.org.uk/ http://djce.org.uk/pgpkey
signature.asc
Description: Digital signature
-- ## List details at http://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
