<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2800.1226" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>I've read several documents on how it isn't useful
to have a spam rule set based on an IP address because spammers are constantly
changing their ip address. </FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Does there exist, however, a script that would
integrate with mailscanner to identify an ip address of someone sending massive
amounts of messages in succession to which our server only responds "user
unknown" (indicating a spammer). Furthermore, would it be possible to
dynamically take that ip address and immediately block or tarpit the sender for
a given time.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Is there any existing active filter that modifies
the access.db on the fly based on failed reverse DNS lookups? would it be
possible to have mailscanner send a message to like a 7-layer switch instructing
it what type of message to just DISCARD.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>If there is anyone who has already implemented
something like this I'd be interested to know.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2>There's no place like root#cd
~/</FONT></DIV></BODY></HTML>
-------------------------- MailScanner list ----------------------<br>
To leave, send leave mailscanner to <a href="mailto:jiscmail@jiscmail.ac.uk">jiscmail@jiscmail.ac.uk</a><br>
Before posting, please see the Most Asked Questions at<br>
<a href="http://www.mailscanner.biz/maq/">http://www.mailscanner.biz/maq/</a> and the archives at<br>
<a href="http://www.jiscmail.ac.uk/lists/mailscanner.html">http://www.jiscmail.ac.uk/lists/mailscanner.html</a><br>