If you plug-gw it, you can also just tcp_wrap it, and then use your hosts.allow, etc.. to stop spammers. On Sun, Nov 21, 1999 at 10:16:39PM -0700, Forrest W. Christian wrote:
On Sun, 21 Nov 1999, Kai Schlichting wrote:
THEY WILL FIND YOUR RELAYS ON THEIR OWN, AND THEY WILL ABUSE THEM, NO MATTER HOW LOUD YOU SCREAM.
In transition to a new mail server (with a new address), I installed a plug-gateway on the old server to redirect mail.
Unfortunately, plugd hides the ip address of the sender, and since I trust my netblocks, all of the ip addresses on the old server became "spam relay entry points".
It took the spammers 96 hours to find 3 of the addresses on that box and for us to be listed in orbs. I figured I would have at least had a week or two to figure out a better way.
I ended up staying up all night getting transparent proxying to work right on the new server and making it work with a cisco route-map.
-- Jared Mauch | pgp key available via finger from jared@puck.nether.net clue++; | http://puck.nether.net/~jared/ My statements are only mine. END OF LINE |