Facebook
TwitterI get this in my Qmail log files:
tail -f /usr/local/psa/var/log/maillog | egrep -i "unable|failed|refused|error|warning|listed"
This repeats over and over from all different IP address. At some stage the compromised user's password was changed so the spammers can't get back into that account.
However, I want to take additional precaution and permanently block those IP addresses. Please recommend something that checks for repeated failed logins on SMTP and then block the IP addresses.
tail -f /usr/local/psa/var/log/maillog | egrep -i "unable|failed|refused|error|warning|listed"
This repeats over and over from all different IP address. At some stage the compromised user's password was changed so the spammers can't get back into that account.
However, I want to take additional precaution and permanently block those IP addresses. Please recommend something that checks for repeated failed logins on SMTP and then block the IP addresses.
