|
9 mbs all weekend ... phuck ..
I cannot walk away from my console for 2 days ...
My server has been running on 9 mbs fulltime the whole weekend, some kind of smtp attack, like 1000's of emails where send to my smtp with various sizes 1-100 meg a email is there a way to stop this kind of shit. I use postfix as smtp server. thnx |
disable all email
|
unplug your server & quit pissing off hackers
|
|
hmm, you don't happen to have any
of the default cgi's installed do you? some of them are really, really bad about not checking valid returns, etc. mailer.cgi is one i recall from not too long ago. do you need email on this box? have you looked at the logs(mail and http) to see how they are doing it? its pretty easy to do, but also pretty easy to fix.... t |
Quote:
|
disable smtp on your server.
if you are using it for your own mail, I suggest this little tool http://www.postcastserver.com it's a local smtp server, it will run in your machine and send any email you need, it's free too... |
Quote:
|
I had formmail installed and someone used it to send about 20,000 SPAM mails. I'm still being bombarded with return receipts. Make sure you've got the updated version if you're using it.
|
make sure your server isnt an open relay... they get used for spam. So basicly make sure that your server required a login in order to SEND email through it. Once you did that, you can also limit the max size of an emal to 5mb or something like that so they wont send those 100mb emails anymore for sure.
|
Quote:
|
spammers using your server as a relay,,,
two ways to fix it,,, place a cap on the server and or close the smtp port,,, till you can prevent the problem again |
block their ip addresses using iptables, ipchains, or ipfw.
also, postfix by default does not allow foreign relaying... maybe it's people sending you messages, or someone faked headers so you get tons of returned emails (somewhat like a smurf attack but using email..) not sure. would have to see. hit me up on icq if you want my help looking into it.. |
Disable Relaying
|
does that make me a computer geek because i am madly in love with my computer?
i love it so much in fact, that i slip a pube in the a: every day so i can feel sexually connected.... is this normal? |
hahaha
|
is this funny? so it is not normal??
|
Just run qmail amd forget all the other shit.
|
postfix by default is pretty secure, especially relay-wise. it's almost too strict. unless you fucked with the settings, it isn't a relay issue.
qmail is poopie to install. postfix is much better. however, i will give djb props on djbdns. i do use that and am proud to tell the world. |
relaying is disabled ofcourse, and i blocked the fucker in my iptables and checkpoint firewall. He was not using it as a relay but he was just flooding my smtp. I dont know why, may b he dont like my gallerychecker.com stuff.. :) Anyway bandwdith is $$$ overhere so 9mbs a few days is not funny cashwise...
Mayb all his galleries got declined on TGPs using it. I dont know. :ak47: |
yeah that sounded like the more viable issue.. postfix is good with relay security :)
sucks man. i feel your pain. been there, done that. |
| All times are GMT -7. The time now is 05:20 AM. |
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123