we were previously setup for "relay for users" until we were taken advantage of 2 weeks ago by an outside entity that spoofed a number of our customer addresses; so this morning at 2a.m., we locked down smtp to "relay for adresses" and have all our company wide IP's and cust's static IP's listed here;
however, those users that need to use SMTP authentication are not able to send out; getting the "550 not local host" error message. I have been able to duplicate this same error by logging into a standard 56k account we keep at a competitor for testing purposes. We are running 7.06 with access external database. KB says that SMTP auth is supported with v7.0+ and that the primary domain needs to be an IMail database setup. This we have - primary domain is imail.globalweb.net set for IMail database and with the IP address assigned to server - all other domains are set as virtual domains) Any help or thoughts will be greatly appreciated! Randy Armbrecht Global Web Solutions�, Inc. 804-346-5300 x102 877-800-GLOBAL (4562) x102 http://globalweb.net http://e-globalweb.net ----- Original Message ----- From: "Len Conrad" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, August 19, 2002 7:24 AM Subject: RE: [IMail Forum] dictionary attacks > > >Scott's site that shows the latest SPAMs they have received. These > >sites all have an email that is only used to receive SPAM. So why not > >automatically blacklist and add the email or IP added anytime that > >e-Mail address receives SPAM. > > > >I know we have over 10 of these addresses of former employees and long > >gone distribution lists that all have ended up in some list. If only we > >could dynamically block for 1 hour or 2 any address or IP that sends > >these addresses an email we will be set. > > My recent enhancements to IMGate include harvesting many kinds of > information from the maillog file. My scripts does just as you say, when > after Imail bounces a certain number of messages in a day or over a month, > to one account, then that dead account is added to IMgate so IMGate can > reject the mail without having to waste resources sending it Imail. > > Then as sites continue to send mail to dead accounts, functioning now as > "honey pots", we know that the msgs are spam and that the spammers are > probably succeeding it hitting good acounts, so the scripts automatically > harvest the ip's sending to dead accounts, and also the "mail from:". This > is, just one, very effective way of hardening IMGate defenses for the > specific IMGate site, based on abuse specific to that site. > > Len > > > __________________________________________________________________ > www.menandmice.com/DNS-training : DNS Training > BIND8NT.MEIway.com : ISC BIND for NT4 & W2K > IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways > > > To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html > List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ > Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/ > --- > [Scanned for viruses on GlobalWeb.net's system using Declude/F-Prot AV] > > To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
