Re: mail-bombing

To: debian-isp@lists.debian.org
Subject: Re: mail-bombing
From: Robert Brockway <rbrockway@opentrend.net>
Date: Mon, 13 Dec 2004 06:16:36 +0000 (GMT)
Message-id: <[🔎] 20041213061411.W310@nirmala.opentrend.net>
In-reply-to: <[🔎] 454996042.20041212193756@onee.sk>
References: <[🔎] 454996042.20041212193756@onee.sk>

On Sun, 12 Dec 2004, Marek Podmaka wrote:

 So is there any solution for this? We can't use safe_mode in php,
 it's too restrictive for most customers. We use postfix (default
 version in woody)


A couple of thoughts:

1. Transparently proxy SMTP to your an MTA you control, which limits thenumber of simultaneous SMTP connections that it will accept.

2. Use a firewall (like netfilter, aka iptables) to rate limit outgoingsmtp connections.

You could also put in some alerts if some of these threaholds areexceeded.


Cheers,
	Rob

--
Robert Brockway B.Sc.
Senior Technical Consultant, OpenTrend Solutions Ltd.
Phone: 416-669-3073 Email: rbrockway@opentrend.net http://www.opentrend.net
OpenTrend Solutions: Reliable, secure solutions to real world problems.

Reply to:

References:
- mail-bombing
  - From: Marek Podmaka <marki@onee.sk>

Prev by Date: Re: phpBB vulnerability exploited
Next by Date: Re[2]: phpBB vulnerability exploited
Previous by thread: mail-bombing
Next by thread: phpBB vulnerability exploited
Index(es):
- Date
- Thread