Milter-greylist

9 \u0441\u0435\u043d\u0442\u044f\u0431\u0440\u044f 2016�\u0433. 12:35:47 CEST, "Serge Stepanov serhioz@... [milter-greylist]" <milter-greylist@yahoogroups.com> \u043f\u0438\u0448\u0435\u0442:
>use
>
>racl whitelist auth /.*/
>dacl whitelist auth /.*/
>
>wherever you want to skip auth users
>
>
>On Fri, Sep 9, 2016 at 1:28 PM, maren.zubizarreta@...
>[milter-greylist] <
>milter-greylist@yahoogroups.com> wrote:
>
>>
>>
>>
>> Again as I have no answer and I would like to set this before the
>> weekend,that is when we get attacked,
>>
>> I will open a new topic:
>>
>>
>> I have successfully tested my rules (copied from Can's) to ratelimit
>> authenticated users
>> For these rules to be applied I have to set "noauth", but then all
>other
>> rules that I had before (such as default greylisting) are applied to
>> authenticated users. Is there a way to organice the rules to avoid
>this?.
>>
>>
>> I mean, enabling the noauth at the end of my previous file, and
>adding at
>> the end the new rules for authenticated users, would do the job?
>>
>> Something Else?
>>
>>    Thanks
>>
>>     Maren
>>
>>
>> 
>>

Do you get attacked on a schedule? ;)

Don't you have a policy to block access to accounts caught spamming - whether due to compromise or malice? If you have some broken already, change passwords until you discuss it with the user to change back. If you expect some to be broken every weekend, revise password complexity rules, set up starttls/ssl to avoid sniffing, etc.

Jim

--
Typos courtesy of K-9 Mail on my Samsung Android