Results 1 to 1 of 1

Thread: relay by external sites

  1. #1
    tiger2000 is offline Elite Member
    Join Date
    May 2008
    Location
    Taiwan
    Posts
    296
    Rep Power
    6

    Default relay by external sites

    Dear All,

    this is a university case(zcs 5.0.9 open source edition) and we found there are some Auth log for some users from outside and sent lots of spam.

    Code:
    2009-06-05 07:18:10,161 INFO  [btpool0-22444] [oip=41.220.75.3;ua=zclient/5.0.9_GA_2533.RHEL4;] security - cmd=Auth; account=xxx@xxx.xxx.xxx; protocol=soap;
    We totally understand that we should ask for higher passwd policy to protect from such situation. However, as a quick workaround, can someone advise what we can do ?

    So far, I've made some changes :

    1. disable SMTP authentication from Global -> MTA (uncheck smtp authentication) because we have another spam gateway which is for smtp authentication purpose.
    2. check MTA trusted network (it's already set to 127.0.0.* and our local IP)
    3. "Drop" that IP from iptables configuration. (we don't like this way, though)

    (anything else ???)

    is it possible to disable the soap access for users (except the Webclient login)?

    Thanks.
    Last edited by tiger2000; 06-04-2009 at 08:30 PM.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Relay all mail, local and external?
    By Vimm in forum Administrators
    Replies: 7
    Last Post: 09-09-2011, 01:34 PM
  2. [SOLVED] External relay address
    By russgalleywood in forum Installation
    Replies: 3
    Last Post: 11-03-2008, 06:48 AM
  3. Relay through external spam filter clarification
    By MrBryce2000 in forum Administrators
    Replies: 2
    Last Post: 10-30-2008, 09:47 AM
  4. Adding external relay to existing installation
    By sean.lutner in forum Administrators
    Replies: 1
    Last Post: 02-05-2008, 01:58 PM
  5. External Relay
    By Winaay in forum Administrators
    Replies: 2
    Last Post: 12-06-2006, 11:39 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •