View Single Post
  #8  
Old 29th March 2013, 15:11
Lionheart82 Lionheart82 is offline
Member
 
Join Date: May 2011
Posts: 40
Thanks: 3
Thanked 4 Times in 4 Posts
Default

I have had exactly this incident in my server a while ago...

Seems like a good fail2ban rule along with monit is a good way to stop this attacks and monitor the server for multiple emails queue ( in case some account is compromised again).

my fail2ban sasl rule has currently 10 bans and by using the recidive rule you can ban permanently those attackers.

If you need help with the rule we will be here
Reply With Quote