TIP: Click on subject to list as thread! ANSI
echo: synchronet
to: RAGNAROK
from: DIGITAL MAN
date: 2020-03-31 13:10:00
subject: smtp attack
  Re: smtp attack
  By: Ragnarok to DOVE-Net.Synchronet_Discussion on Tue Mar 31 2020 04:09 pm

 > can you detect this attack? for throtle the smtp connection or log error
 > + remote ip address to help to add a fail2ban rule ?

I think you're referring to this:

 > Mar 31 16:07:16 scarlet synchronet: mail 0128 SMTP !missing AUTH LOGIN
 > username argument

These are counted as a login failure and the loginAttempt settings apply
(hack-logging, auto-filtering). And the login attempt delay is applicable here
as well, if configured.

So... I'm not sure what you're asking for.

                                            digital man

This Is Spinal Tap quote #38:
Artie Fufkin:  I'm not asking, I'm telling with this. Kick my ass.
Norco, CA WX: 73.7øF, 34.0% humidity, 0 mph ENE wind, 0.00 inches rain/24hrs
--- SBBSecho 3.10-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
SOURCE: echomail via QWK@docsplace.org

Email questions or comments to sysop@ipingthereforeiam.com
All parts of this website painstakingly hand-crafted in the U.S.A.!
IPTIA BBS/MUD/Terminal/Game Server List, © 2025 IPTIA Consulting™.