Hello there.
I run a server with directadmin. Every service in it uses secure protocols or alternative ports or is adequately firewalled. The sole point of failure is port 25 SMTP, which must remain open to the internet to ensure people can receive e-mail from the outside.
As a result, my DA inbox slowly fills up with brute force attempts detected by the monitor - every single one of them targetting exim. I've never been too worried about this, since I don't move that much e-mail and all passwords are secure. Even so, it's bothersome.
I've recently been told that I should be able to disable authentication on port 25 entirely and use it only for receiving external mail. Is this true? Are there drawbacks? Can anyone give me more information or a link to the correct thread or help page (I couldn't find any)? Or if there aren't any, can you explain how to do this or point me in the right direction at least?
Thanks.
I run a server with directadmin. Every service in it uses secure protocols or alternative ports or is adequately firewalled. The sole point of failure is port 25 SMTP, which must remain open to the internet to ensure people can receive e-mail from the outside.
As a result, my DA inbox slowly fills up with brute force attempts detected by the monitor - every single one of them targetting exim. I've never been too worried about this, since I don't move that much e-mail and all passwords are secure. Even so, it's bothersome.
I've recently been told that I should be able to disable authentication on port 25 entirely and use it only for receiving external mail. Is this true? Are there drawbacks? Can anyone give me more information or a link to the correct thread or help page (I couldn't find any)? Or if there aren't any, can you explain how to do this or point me in the right direction at least?
Thanks.
