Nick Jennings wrote:

> Luckily this machine is not in production yet and so I just shutdown
> the dovecot daemon. I was wondering if anyone could suggest any measures
> I can take to stop thing kind of thing happening? Also, what kinds of
> risks does this sort of an attack expose me to? Could it bring my server
> down or could they actually break in?

1. report the abuse to the provider; you have incoming the IP address.

2. Use tcp wrapper to secure dovecot, limiting access to known good
addresses.
--
Tim Evans, TKEvans.com, Inc.   |  5 Chestnut Court
UNIX System Admin Consulting   |  Owings Mills, MD 21117
http://www.tkevans.com/      |  443-394-3864
http://www.come-here.com/News/ |  tkevans@(protected)

_______________________________________________
rhelv5-list mailing list
rhelv5-list@(protected)
https://www.redhat.com/mailman/listinfo/rhelv5-list