Hi Guys,
I have seen a sustained attack from many many IP addresses trying to brute force weak passwords in SMTP.
The attacker/s have many IP addresses at their control and at 200 permanent blocks he was simply using a rotation of more than 200 to continually attack.
I have upped the limit in CSF to 1000 but there is now approaching 800 IP's in the attack and it doesn't seem to be slowing down.
I can copy IP addresses over to the CPHulk blacklist, but can't find if there is a maximum number of IP's in that system as well.
Is there a max number of IP addresses in CPHulk or is there a way to up the 1000 limit in CSF?
Cheers
Ben
I have seen a sustained attack from many many IP addresses trying to brute force weak passwords in SMTP.
The attacker/s have many IP addresses at their control and at 200 permanent blocks he was simply using a rotation of more than 200 to continually attack.
I have upped the limit in CSF to 1000 but there is now approaching 800 IP's in the attack and it doesn't seem to be slowing down.
I can copy IP addresses over to the CPHulk blacklist, but can't find if there is a maximum number of IP's in that system as well.
Is there a max number of IP addresses in CPHulk or is there a way to up the 1000 limit in CSF?
Cheers
Ben