|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Botnet detection (pre-greet experiments)
From: Wietse Venema (wietse
porcupine.org)
Date: Wed Mar 04 2009 - 11:33:44 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Jacqui Caren:
> Wietse Venema wrote:
> > Although the idea of proactive botnet detection has merit, building
> > delays into the SMTPD process is very problematic. It causes Postfix
> > to waste more time on bogus SMTP clients, so that it reaches the
> > "all SMTP servers busy" condition sooner.
>
> I thought some smtp reverse proxy front ends already did this.
> The catch "talk ahead" bots by listening for talk for a short period and
Yes, they do, including spamd that I reference several times
in the text that you deleted.
Wietse
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]