[Dovecot] 64.31.19.48 attempt to break into my computer

Stan Hoeppner stan at hardwarefreak.com
Fri Sep 23 16:13:46 EEST 2011


On 9/22/2011 9:42 AM, Robert Schetterer wrote:

> why not simply use clamav-milter with sanesecurity sigs
> ( works like charme here )
> so the stuff dont pass ever in mailboxes, if you dont like reject , then
> hold for manual human admin interaction

Seems to me this could be done pretty easily with a PCRE/regexp body 
filter in Postfix, assuming the credentials follow a strict pattern. 
Apply it to the submission daemon stream and redirect the mail with a 
filter action to an admin mailbox.  I've not written such a thing myself 
but it seems it would be pretty straightforward.

-- 
Stan



More information about the dovecot mailing list