amb-sendok-1330973673.ddmkpnmicemnekogopnk at bradfo
Feb 4, 2012, 10:54 AM
Post #4 of 4
Re: POP3 dictionary attacks -- change of bot strategy
[In reply to]
Thus said Erwin Hoffmann on Sat, 04 Feb 2012 19:26:37 +0100:
> I need to add, that I use the DNS 'paranoid' verification in sslserver
> and rejecting session which don't have a PTR and A RR.
I should also add that similar measures are in place on my end which
would skew the greetdelay numbers. A significant number of connections
have already been eliminated from the total through greylisting (and
blacklisting). I'm not sure what percentage of those would be caught by
Also, I don't reject outright, systems with bad DNS, however, they are
penalized. Here is what I have in tcprules:
Where X is the base delay that I want to introduce.
Thanks for the response.