Menu
▾
▴
[Sshguard-users] Lockout for postfix abuse
|
From: <li...@la...> - 2015-11-13 03:01:44
|
I see sshguard reads exim and Dovecot logs, but not postfix, based on the attack signature reference page. Is there something I can do to stop hackers such as the one listed below: Nov 13 01:10:53 theranch postfix/smtpd[16895]: connect from unknown[203.71.152.23] Nov 13 01:10:53 theranch postfix/smtpd[16895]: lost connection after EHLO from unknown[203.71.152.23] Nov 13 01:10:53 theranch postfix/smtpd[16895]: disconnect from unknown[203.71.152.23] Nov 13 01:14:13 theranch postfix/anvil[16897]: statistics: max connection rate 1/60s for (smtp:203.71.152.23) at Nov 1 3 01:10:53 Nov 13 01:14:13 theranch postfix/anvil[16897]: statistics: max connection count 1 for (smtp:203.71.152.23) at Nov 13 0 1:10:53 |
