LinkBack URL
About LinkBacksHave anyone tried script "Exim Dictionary Attack ACL" for cPanel (http://www.configserver.com/free/eximdeny.html).. Any suggestions about it ?
Exim Dictionary Attack ACL for cPanel
Have anyone tried script "Exim Dictionary Attack ACL" for cPanel (http://www.configserver.com/free/eximdeny.html).. Any suggestions about it ?
Works great! Chirpy is awesome.Originally Posted by sh4ka
Just do it, don't worry about it, it is good.
Oki doki.. I saw the same red "doggie" :P on the site of this script but I never imagine that that was chirpy's website, anyway.. I'll try it. thanks guys.
It's in my forum signature
Jonathan Michaelson
Need your cPanel servers secured and tuned?
cPanel Server Configuration, Security, Recovery and Antivirus/AntiSpam Services
Developers of the most effective (and free) Firewall & Security Solution for cPanel Servers - csf
http://www.configserver.com
Chirpy, is that a dog or a pony ???
looks like a corgi to me
It's an English Bull Terrier - we have 2 of the little mosters
hint: click on the logo on the configserver site.
Jonathan Michaelson
Need your cPanel servers secured and tuned?
cPanel Server Configuration, Security, Recovery and Antivirus/AntiSpam Services
Developers of the most effective (and free) Firewall & Security Solution for cPanel Servers - csf
http://www.configserver.com
Hey Chirpy,
any way to "permanently" ban the dictionary attack servers. I've had a dictionary attack going on for 3 weeks now. They seem to just be recycling the servers after your script drops them. I don't want to really "permanently" ban them - just set the number of days to keep a server banned.
Michael
If it's for one or two servers it's probably best to drop in a custom ACL for them:
Stick that just before the exim deny ACL drops.Code:drop hosts = 11.22.33.44 : 11.22.33.55 : 11.22.33.66 message = Spam or Mail Bombing activity
Alternatively, if you want the blanket ban to last longer, remove the symlink in /etc/cron.daily/exim_deny.pl and create a crontab to run that at the frequency that you want (e.g. every 3 days, etc).
Jonathan Michaelson
Need your cPanel servers secured and tuned?
cPanel Server Configuration, Security, Recovery and Antivirus/AntiSpam Services
Developers of the most effective (and free) Firewall & Security Solution for cPanel Servers - csf
http://www.configserver.com
Thanks Chirpy,
I'm embarrassed it was as simple as changing the cron job....
It's about 50 servers hammering me, so cron is the way to go.
Michael
Thank you JonathanIt's an English Bull Terrier - we have 2 of the little mosters
hint: click on the logo on the configserver site.
Finally we can see your photo from that link
http://chirpy.com
Thanks Bijo.... I really wanted to see the head that carries those brains...
I can wholeheartedly recommend the dictionary ACL. A few months back one of our resellers moved a domain getting 70,000 spams a day with blackhole settings to our server. The jump in CPU usage was incredible - for just that one domain. After changing the default destination for the domain from blackhole to fail the server CPU load went back to normal almost immediately although it took a few days for the dictionary ACL to work it's magic and persuade the spammers to play elsewhere. I don't know how anyone could operate a server without the dictionary attack ACL.
I would also agree, using the "Exim Dictionary Attack ACL" is a must have for any Server.
Touch of class on Chirpy's part, to provide it for Free. Even muddlehead's like myself can install it.
Helping people Host, Create, and Maintain their Web Site
Also providing Server Admin Services - setup / troubleshooting
http://potentproducts.com/
Reply With Quote