|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
how could postfix survive to a mail bombing?
From: Andrea Fino (af
faino.org)
Date: Tue Oct 11 2005 - 09:17:30 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi to all,
recently a canonical postfix installation here has received many mails
(thousands a day).
Those emails are all spam targeting different domains, with different
generated recipients and I am pretty sure with existant email adresses
as sender.
Well, the postfix server has some domains targeted from that bombing
with a limited list of valid email adresses, so in this case the postfix
response is 550, "unknown user", I suppose this stuffs go in out queue
as well, but others have a catchall account, so all of them goes to the
content filtering (amavis + clamav + spamassassin), with a great
contribution to the system collapse.
A lot of different ip was used to send this thing, so blocking the ip is
not an option or at least I guess reguires some program to analyze the
log, to react blocking for a time, and so.
So am wondering which kind of strategies may be feasible to adopt
nowdays in such a case.
Regards,
Andrea
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]