Hello one and all, I don't post here much (well hardly ever) But anyways for the last 3 days we have been under attack IP's from all over being used to relay thru our mail server.
These emails just get stuck in queue and never go anywhere. They are not sent to any of the domains we host and for the most part they are sent to a domain that does not even resolve to anywhere.
Well after long long hours of tweaking Exim config I found this line
accept hosts = +skipsmtpcheck_hosts
Now when I comment this out the emails stop making it to the queue but the attack is still going on. So my question is what is this line used for? and why is it letting other bogus users relay through the mail server?
Any help would be greatful
These emails just get stuck in queue and never go anywhere. They are not sent to any of the domains we host and for the most part they are sent to a domain that does not even resolve to anywhere.
Well after long long hours of tweaking Exim config I found this line
accept hosts = +skipsmtpcheck_hosts
Now when I comment this out the emails stop making it to the queue but the attack is still going on. So my question is what is this line used for? and why is it letting other bogus users relay through the mail server?
Any help would be greatful