Re: protecting mail server from DOS

To: debian-isp@lists.debian.org
Subject: Re: protecting mail server from DOS
From: Jose Celestino <japc@co.sapo.pt>
Date: Wed, 18 Feb 2004 11:57:39 +0000
Message-id: <[🔎] 20040218115739.GD32048@co.sapo.pt>
Mail-followup-to: debian-isp@lists.debian.org
In-reply-to: <[🔎] 1288.216.166.133.210.1077002717.squirrel@web1.cs.montana.edu>
References: <[🔎] 1288.216.166.133.210.1077002717.squirrel@web1.cs.montana.edu>

Words by Lucas Albers [Tue, Feb 17, 2004 at 12:25:17AM -0700]:
> Just recently I had my mail server swamped by a single virus machine that
> kept resending a virus message, ignoring my 5xx rejection code.
> 
> Is it possbile to block this via an iptables smtp max connection throttle
> code?
> 
> How do you handle this?
> Via iptables?, or via qmail/postfix/exim/sendmail internal coding?
> 

Null route 'em. That will keep them busy for quite a long time.

> Does anyone else encounter this problem on a regular basis?

No. And I find it hard that a client machine can so easily disturb your
service.

> How do you solve this?
> 

null route.

-- 
Jose Celestino | http://xpto.org/~japc/files/japc-pgpkey.asc
----------------------------------------------------------------
"...the law, cold and aloof by its very nature, has no access to
 the passions that might justify the cruel act of murder." -- SADE

Reply to:

References:
- protecting mail server from DOS
  - From: "Lucas Albers" <albersl@cs.montana.edu>

Prev by Date: Re: HTTP latency ..urgent
Next by Date: PHP Nuke 7.0
Previous by thread: Re: protecting mail server from DOS
Next by thread: Converting from Qmail to Postfix
Index(es):
- Date
- Thread