On 2024-05-29 at 10:02:59 UTC-0400 (Thu, 30 May 2024 00:02:59 +1000)
Viktor Dukhovni via Postfix-users <[email protected]>
is rumored to have said:
[...]
I'd be curious to hear whether you'll find much AUTH brute-force
activity from SBL + CSS (and not XBL) and as mentioned previously,
blocking based on PBL is not viable for most submission servers
with users on dynamic IPs.
CSS frequently lists addresses which engage in cred-stuffing. Very often
these are in cheap cloud VM provider ranges, so simply blocking whole
networks from accessing authenticated services at the packet level
usually works.
--
Bill Cole
[email protected] or [email protected]
(AKA @[email protected] and many *@billmail.scconsult.com
addresses)
Not Currently Available For Hire
_______________________________________________
Postfix-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
