[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freebsd-hackers
Subject:    Re: Looking For Beginner/Mediocre Help
From:       "Bruce A. Mah" <bmah () FreeBSD ! org>
Date:       2014-01-21 6:54:45
Message-ID: 52DE19B5.4040402 () FreeBSD ! org
[Download RAW message or body]


If memory serves me right, Brian Reichert wrote:
> On Mon, Jan 20, 2014 at 04:59:11PM -0500, William A. Fink wrote:
>> I hope I'm not double-posting, posting in a list I'm not supposed to, but it
>> seems (to me, anyway) a great place to start. Seems it never fails, someone
>> comes back and complains, this is the wrong list. (No matter which list I've
>> posted to in the past.)
> 
> if you're looking to expoose the incoming IP addresses, this post:
> 
>   http://serverfault.com/questions/281231/help-linux-server-under-smtp-saslauthd-attack

Thanks for posting that...this is something I've wondered about for
awhile but was too lazy to look up.  :-p

> has a response that says:
> 
>   You have to increase the LogLevel to 10 or more. Look in sendmail.mc or put
>   something like define(confLOG_LEVEL',10')dnl
> 
>   This will log the IP number on auth failures.
> 
> Presumably, once they're exposed, any of the mechanims for softly
> managing an IP blacklist would help.

I'm not sure about the syntax in the response.  I think that this is
correct (assuming it's going in sendmail.mc):

	define(`confLOG_LEVEL',10)dnl

Bruce.




["signature.asc" (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]