EDIT: this can be added to /etc/exim.variables.conf.custom per instructions on https://help.directadmin.com/item.php?id=576
I would like to have the following added to the standard spamblocker exim.conf:
I have tested it now for a couple of days and it has effectively stopped all bruteforce exim logins on my server
Some background info:
I saw Bruteforce attempts on my exim all day. This server is only used by me for my own sites, SMTP outgoing is outsourced to sendgrid.com
The mentioned code was found on (http://sysadmintips.in/advanced/csf/exim) - following are instructions to make it work without CSF:
- add a file called exim.smtpauth in /etc/
- in exim.smtpauth place 127.0.0.1 plus xxx.xxx.xxx.xxx's (all IP's you allow to do smtp logins PLUS IP's in use on your webserver)
- add the following line to the beginning of exim.conf
restart exim
so far it has effectively stopped all brute force exim smtp logins on my server
I would like to have the following added to the standard spamblocker exim.conf:
Code:
#EDIT exim.smtpauth
#place exim.smtp.auth file in /etc/ with allowed IP's to login for SMTP
auth_advertise_hosts = ${if match_ip{$sender_host_address}{iplsearch;/etc/exim.smtpauth}{*}{}}
I have tested it now for a couple of days and it has effectively stopped all bruteforce exim logins on my server
Some background info:
I saw Bruteforce attempts on my exim all day. This server is only used by me for my own sites, SMTP outgoing is outsourced to sendgrid.com
The mentioned code was found on (http://sysadmintips.in/advanced/csf/exim) - following are instructions to make it work without CSF:
- add a file called exim.smtpauth in /etc/
- in exim.smtpauth place 127.0.0.1 plus xxx.xxx.xxx.xxx's (all IP's you allow to do smtp logins PLUS IP's in use on your webserver)
- add the following line to the beginning of exim.conf
Code:
auth_advertise_hosts = ${if match_ip{$sender_host_address}{iplsearch;/etc/exim.smtpauth}{*}{}}
restart exim
so far it has effectively stopped all brute force exim smtp logins on my server
Last edited: