Milter-greylist

Hi Maren,

On 2016-09-08 09:12, maren.zubizarreta@... [milter-greylist] wrote:
> Hello:
> 
>  We want to implement an ACL with a ratelimit per authenticated user,
> this is to prevent SPAMMing when one of our  user's credentials are
> stolen, and a SPAMMER using different IPs and the same user
> credentials tries to send SPAm throuh our system.
> 
> Is it possible to do it using milter-greylist? I haven't found how.

Have you thought about fail2ban, not just classic firewall rules, but 
closing smtp accounts if successful smtp logins come from different IPs 
in a very short time period, possibly combining with geoip? Beside 
ratelimits this might be a way to block abusing accounts. I posted that 
question on fail2ban list today.

Ciao!
Marcus