|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Feature Suggestion: Tar-Pit flag in Postfix 2.1 proxy
From: Orlando Andico (orly
mozcom.com)
Date: Mon Feb 02 2004 - 07:48:54 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Mon, 2 Feb 2004, Rene Bartsch wrote:
..
> I just had the idea to implement a tar-pit flag in the Postfix proxy. If
> a filter (e.g. spam-filter or virus-filter) detects a malicious mail and
> sets the tar-pit flag for a connection, Postfix would keep the
> SMTP-connection for a time specified in TAR_PIT_TIMEOUT in smtpd.conf.
it will have the effect of tying up an smtpd process for a long time. i
don't see how this is better than just firewalling them out; the latter
only requires kernel resources whereas holding the connection open will
tie up one of your smtpd processes. so if a spammer connects to you from
multiple zombie-fied IPs it will have the effect of a DoS on you when you
run out of smtpd's.
---
Orlando Andico <orlymozcom.com>
Mosaic Communications, Inc.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]