|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Feature Suggestion: Tar-Pit flag in Postfix 2.1 proxy
From: Orlando Andico (orly
mozcom.com)
Date: Mon Feb 02 2004 - 07:50:43 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Mon, 2 Feb 2004, Orlando Andico wrote:
..
> > I just had the idea to implement a tar-pit flag in the Postfix proxy. If
> > a filter (e.g. spam-filter or virus-filter) detects a malicious mail and
> > sets the tar-pit flag for a connection, Postfix would keep the
> > SMTP-connection for a time specified in TAR_PIT_TIMEOUT in smtpd.conf.
>
> it will have the effect of tying up an smtpd process for a long time. i
spoke too soon.. yes, passing the descriptor to another tarpit daemon
would work (not eat up smtpd's). but you would eventually run out of
resources due to the tarpit daemon also.. them spammers are nothing if not
believers in brute-force approaches.
---
Orlando Andico <orlymozcom.com>
Mosaic Communications, Inc.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]