Some happy chappie decided to run a dictionary attack against my Exim 4.04
installation earlier:
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<amber@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<alex@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<anne@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<alison@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<alec@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<angie@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<amy@SAARINEN.ORG>: Unrouteable address
... etc, ad nauseam.
I've searched Google, and the mailing list archives, but drawn a blank on
finding anything that might be useful to combat dictionary attacks.
Is there a way to e.g. teergrube idiots who bombard your server with lots
of connections? Max_connections_per_host or something?
--
Juha Saarinen
installation earlier:
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<amber@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<alex@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<anne@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<alison@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<alec@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<angie@SAARINEN.ORG>: Unrouteable address
2002-07-08 00:57:35 H=pcp01631504pcs.tybout01.de.comcast.net
(mx.spamcop.net) [68.82.4.229] F=<webmaster@spamcop.net> rejected RCPT
<amy@SAARINEN.ORG>: Unrouteable address
... etc, ad nauseam.
I've searched Google, and the mailing list archives, but drawn a blank on
finding anything that might be useful to combat dictionary attacks.
Is there a way to e.g. teergrube idiots who bombard your server with lots
of connections? Max_connections_per_host or something?
--
Juha Saarinen