directory harvest attack

Mike Kercher mike at CAMAROSS.NET
Tue May 13 14:31:38 IST 2003

This may be a job for David While's script which works QUITE
well on my systems.


-----Original Message-----
From: MailScanner mailing list [mailto:MAILSCANNER at JISCMAIL.AC.UK] On Behalf
Of Julian Field
Sent: Tuesday, May 13, 2003 4:48 AM
Subject: Re: directory harvest attack

Ah, thanks.

MailScanner does not get involved with SMTP service provision. There are
already very good packages out there (your MTA) which do a perfectly good

At 10:38 13/05/2003, you wrote:
>I presume he's talking about collection of addresses in a domain by 
>opening an SMTP session and attempting sends to common/dictionary 
>I just happened to notice some of this activity in my mail log and 
>added a reject action for the sender's IP to the sendmail access db. To 
>automate this would be cool - but I don't think MailScanner even sees 
>the message - based on how these harvesting tools seem to work.
>On Tuesday, May 13, 2003, at 12:49  AM, Julian Field wrote:
>>At 03:02 13/05/2003, you wrote:
>>>Anyway to prevent 'directory harvest attacks' wtith mailscanner?
>>Please explain rather more of what you would like to happen, what the 
>>problem is, and how it relates to MailScanner.
>>Julian Field
>>Professional Support Services at MailScanner 
>>thanks transtec Computers for their support
>>This message checked for dangerous content by MailScanner on 
>Craig Pratt
>Strongbox Network Services Inc.
>mailto:craig at
>This message checked for dangerous content by MailScanner on StrongBox.

Julian Field
Professional Support Services at MailScanner thanks
transtec Computers for their support

More information about the MailScanner mailing list