[gna-project] [task #2968] ban spammers IP

Sat, 25 Feb 2006 03:47:38 -0800 

URL:
  <http://gna.org/task/?func=detailitem&item_id=2968>

                 Summary: ban spammers IP 
                 Project: Gna! Administration
            Submitted by: yeupou
            Submitted on: samedi 25.02.2006 à 12:47
                  Status: In Progress
         Approval Status: None
         Should Start On: samedi 25.02.2006 à 00:00
   Should be Finished on: samedi 25.02.2006 à 00:00
                Category: Day-to-day
                Priority: 5 - Normal
                 Privacy: Public
             Assigned to: yeupou
             Open/Closed: Open

    _______________________________________________________

Details:

I intend to put in place a system that would ban spammers IP for a given time
- like one hour.

I still does know yet how to put that in practice

http://www.exim.org/mail-archives/exim-users/Week-of-Mon-20060220/msg00071.html

Now, my idea is to use exim to store IP somewhere with a timestamp and to
have a script that would update /etc/hosts.deny on a regular basic.

I though of using xinet.d no_access but it would require to restart xinetd
regularly and I do not like that (especially since I noticed sometimes it
does not restart properly). xinetd reads /etc/hosts.deny and I think it does
without restarting - I have to test that.

I guess this piece of code would have a public interest and as daemonzup or
alikes piece of small software, I would make it public on a specific project
at Gna! instead of adding it to gnapgnap.

If my current assumptions about hosts.deny are right, to keep thing simple, I
would have:  
  - a perl client that fills a database with IP and timestamp
  - a perl script that would update hosts.deny according to the database

Maybe starting a perl client each time would be a problem, maybe it should
somehow be a daemon (ideally not over tcp/ip for security reasons).

So I'll first check my hosts.deny thing and then see what to do.


Banned spammers would be: IP that got denied at SMTP time due to DNSBL or IP
that got caught sending a spam to a mailing-list with a score higher to 13
(sent directly to /dev/null).






    _______________________________________________________

Reply to this item at:

  <http://gna.org/task/?func=detailitem&item_id=2968>

_______________________________________________
  Message posté via/par Gna!
  http://gna.org/


_______________________________________________
Project mailing list
[email protected]
http://mail.gna.org:8080/listinfo/project

Reply via email to