High CPU load, RCPT TO:

[Drew Marshall]

    [ The following text is in the "ISO-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]

Ed Bruce wrote:

> Ok, I've seen a number of answers like this, as long as you use
> sendmail. Well we're using postfix. Does this not work with postfix?

No

> I
> see that postfix has smtpd_client_connection_rate_limit, but I've got a
> sneaky suspicion it doesn't do anything when using MailScanner or am I
> wrong and this does work???

You are wrong and it works well :-) . What you have to remember is that
MS sits between Postfix's SMTPd and the rest of the Postfix process, so
you can use all of the 'smtpd_' suite of parameters to protect your
machine (Including strict RFC821 envelopes etc) and then what ever gets
through there MailScanner gets!

One of the other things I use to protect against brute force attacks is
smtpd_hard_error_limit which I use to lower Postfix's hard error limit.
So if there is a single client who issues too many errors they are
disconnected after a set number of errors.

Drew

--
In line with our policy, this message has
been scanned for viruses and dangerous
content by MailScanner, and is believed to be clean.
www.themarshalls.co.uk/policy

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).

Support MailScanner development - buy the book off the website!