Dictionary attacks - ruleset help
Matthew K Bowman
mkbowman at NEO.RR.COM
Tue Jul 20 13:45:56 IST 2004
Hello,
We have a client with a Domino R5 server. R5 doesn't cope well with user
unknowns. Due to the recent wave of viruses and spam they are being hit
with thousands of e-mail that has forged From: @domain.com to
@domain.com addresses and I was wondering if the following rulesets
would work to stop them receiving the spam (the viruses I can take care of)
Lets assume that 123.45.67.8 is the IP of their Domino server on our
network and domain.com is their domain.
spam.whitelist.rules
From: 123.45.67.8 yes
spam.blacklist.rules
From: domain.com yes
spam.actions.conf
From: domain.com delete
Would this ^ work?
or this
spam.actions.conf
From: domain.com and To: domain.com delete
work ?
We are using MailScanner 4.31-6
Thank you
Matthew
-------------------------- MailScanner list ----------------------
To leave, send leave mailscanner to jiscmail at jiscmail.ac.uk
Before posting, please see the Most Asked Questions at
http://www.mailscanner.biz/maq/ and the archives at
http://www.jiscmail.ac.uk/lists/mailscanner.html
More information about the MailScanner
mailing list