On 7/7/21 13:08, Michael Peddemors via mailop wrote: [snip]
You should consider adding some AUTH protections of course, to mitigate compromised accounts, and better detection/rate limiters for when they do.
Encourage transparent 2FA, and options like country auth restrictions, blocking AUTH from cloud providers/hosting companies known for being a haven for those types of attacks, (should make a blog post on best practices for authentication on email servers one day) but..
[snip] Fail2ban can be very useful here. -- Jay Hennigan - j...@west.net Network Engineering - CCIE #7880 503 897-8550 - WB6RDV _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
