daily attacks from a spammer -
Hi everyone
Checking my mail logs, i keep seeing the same ip address trying to use my server to relay spam. Fortunately, their attempts have been blocked, but it's happening around the same time each day and it's really annoying. Is there anything i can do to stop them? Jamie |
Quote:
2) You can try to report abuse. whois ip_address might provide contact information for that purpose. |
ok, thank you.
done whois ip_address, and this is the information it gave: Code:
whois 118.165.74.67 jamie |
There's plenty of places, just search google, for example:
http://www.spamcop.net/ |
Quote:
Don't waste your time trying to report these - you'll be spending you life trying to stop millions of bot'd machines. That's a fools errand. Go about your life, knowing that your mail server is working exactly as you want it to work. Out of curiosity, which MTA are you using? |
Quote:
And it's in China. I think, this means that reaching someone to shutdown spammer might be problematic (i may be wrong). So, I think your best bet will be to block IP or leave it to server, as Mr. C. suggested, unless this spammer eats all your bandwidth or something like that. It also makes sense to check spamcop link provided by H_TeXMeX_H, but I doubt that they'll shutdown offending machine. |
Thanks guys. You're right, at least i know it's not getting through which is the main thing.
I'm using sendmail (came with Slack current). Once or twice i can accept, it's just bothered me because it's the same person at least twice every day! Jamie |
You'll have more and more over time. Relay attempts are far less common today, as mail servers are configured to not allow relaying by default. But all sorts of other attacks occur:
Code:
94 Reject relay denied 3.42% It is most likely not a human, but a bot. |
All times are GMT -5. The time now is 08:43 PM. |