Jake Vickers wrote:
> Eric Shubert wrote:
>>
>>> That does mean that if you get more than 12 connections on port 25 in a
>>> 60 second timeframe by an IP you'll drop the rest of their connections
>>> from their IP at the firewall level.
>>> It's not targeted at clients; it's targeted at spam servers. Some of
>>> them will connect 50 times or more at whatever rate their NIC can handle
>>> and try joe-jobbing your server.
>>>
>>>
>>
>> Wouldn't this be a good thing to have in the stock toaster firewall?
>>
>
> We had a discussion a couple years back on the development list (I think
> before you joined the project) and it was decided that the stock toaster
> would be targeted to be a "just works" install for small businesses and
> individuals. The spam rules were left loose so that it would
> (hopefully) never reject legitimate emails, which was shooting for the
> goal of companies installing QMT to not having to worry about legitimate
> emails being lost from a stock install. Those that want to customize it
> for their environments can do so, but to keep it a "just works" type
> thing a lot of things had to be left loose, if that makes sense.
> It was also targeted at smaller businesses, which is why some people
> complain that when they hit >= 1000 users they have to "do a lot of
> work" to make it fit their environment.
>
This seems to me to be more of a DoS sort of thing, without which puts the
toaster more in a class of "doesn't just work". ;)
No big deal either way I suppose.
--
-Eric 'shubes'
---------------------------------------------------------------------
QmailToaster hosted by: VR Hosted <http://www.vr.org>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
