Re: Distributed spam attack.

To:	"qmail@list.cr.yp.to" <qmail@list.cr.yp.to>
Subject:	Re: Distributed spam attack.
From:	Ajai Khattri <ajai@bitblit.net>
Date:	Wed, 29 Nov 2006 14:26:59 -0500 (EST)
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	gmail-qmail@securepoint.com
Delivered-to:	sp.com.list@gmail.com
Delivered-to:	mailing list qmail@list.cr.yp.to
In-reply-to:	<1164808174.22680.10.camel@mtice-ubuntu>
Mailing-list:	contact qmail-help@list.cr.yp.to; run by ezmlm

On Wed, 29 Nov 2006, Matt wrote:

> So I've searched around but haven't found any real solutions (in fact,
> there may not be any solutions).  For the past week one of my virtual
> domains has been slammed by what appears to be a distributed spam
> attack.  I have the validrcptto patch
> (http://qmail.jms1.net/patches/combined-6c5.shtml)
> installed - so at least I don't have 80,000 messages trying to bounce.
> At first it was a big deal because it assisted in maxing out my remote
> concurrency, but that has subsided quite a bit now - so now it's just
> annoying me.  Is there any real solutions to deal with this?  I could
> add the ip addresses to my iptables . . . but boy would that be a lot of
> ip's.

If you had some greylisting system you could filter out all the zombie PCs 
pretty easily...


-- 
Aj.

<Prev in Thread]	Current Thread	[Next in Thread>
Distributed spam attack., Matt Re: Distributed spam attack., Randy Adamczyk Re: Distributed spam attack., Richard Feldmann Re: Distributed spam attack., Randy Adamczyk Re: Distributed spam attack., Markus Stumpf Re: Distributed spam attack., Matt Re: Distributed spam attack., Ajai Khattri <= Re: Distributed spam attack., John Simpson Re: Distributed spam attack., Markus Stumpf

Previous by Date:	Re: tcpserver+recordio logging issue, Matthew R. Dempsky
Next by Date:	Re: Distributed spam attack., Richard Feldmann
Previous by Thread:	Re: Distributed spam attack., Matt
Next by Thread:	Re: Distributed spam attack., John Simpson
Indexes:	[Date] [Thread] [Top] [All Lists]