Results 1 to 2 of 2

Thread: Spamming In Zimbra By Users Account With Weak Password

  1. #1
    haris-bytecraft is offline Beginner Member
    Join Date
    Oct 2010
    Posts
    1
    Rep Power
    4

    Default Spamming In Zimbra By Users Account With Weak Password

    Hi

    have this occurs problem to a Zimbra server. Spammer will used any
    account they can breach to spam. More than 6000 spam email will be
    send for every successfully try before we found out.

    Ok I know you know we know, we need to ask users to change and use
    harden password. Yes, we are doing it, so its going to
    take time until the users used to it. At this moments, sysadmin busy
    with locked accounts due to accounts try by outsider. We have set the
    policy after 3 times login failure, account will locked but this burden our sysadmin.

    For information, this attack is using the login using HTML.

    Re: Dealing with compromised Zimbra accounts

    Help with compromised accounts

    I have use this script to delete the account email, after locked the account.

    HOWTO: Remove mail from postfix queue based on from email or rcpto email address

    Can anyone share any information how they enject the spam emails so I can block using http filter?

    Thanks.

  2. #2
    Dirk's Avatar
    Dirk is offline Moderator
    Join Date
    May 2006
    Location
    England.
    Posts
    927
    Rep Power
    10

    Default

    I'd suggest setting the accounts to lock after 2 or three wrong password attempts, but then unlock after 10 minutes. Inform the users that accounts wont be unlocked and they should just wait 15 mins and try again.

    That delay shouldnt upset the user too much, will take the burden off support and will prevent brute force attacks because ~10 password attempts per hour is a lot less than a hacker will be happy with.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Old Backup stay in TO_DELETE status and no clearing..
    By bartounet in forum Administrators
    Replies: 0
    Last Post: 10-05-2010, 07:40 AM
  2. [SOLVED] Install Problem in Ubuntu 6.06 Server
    By xtimox in forum Installation
    Replies: 16
    Last Post: 03-27-2008, 09:36 AM
  3. Big Fubar on 5 FOSS GA Upgrade
    By uxbod in forum Administrators
    Replies: 24
    Last Post: 01-21-2008, 03:37 AM
  4. Unable to start tomcat
    By chanck in forum Administrators
    Replies: 11
    Last Post: 06-11-2006, 12:58 AM
  5. Mail logs
    By Rick Baker in forum Installation
    Replies: 8
    Last Post: 01-17-2006, 04:33 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •