John Hinton wrote: >> Yes... most of them. Just the new PITA. Anyway... I still can't seem to figure out how to log the IP addresses for this attack. << I'd use iptables to log connections on that port and then time-correlate with the log entries from saslauthd. Best, --- Les Bell [http://www.lesbell.com.au] Tel: +61 2 9451 1144 _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: saslauthd attack
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: saslauthd attack
- From: "Les Bell" <lesbell@xxxxxxxxxxxxxx>
- Date: Thu, 11 Feb 2010 15:01:06 +1100
- Delivered-to: centos@xxxxxxxxxx
- Prev by Date: Re: saslauthd attack
- Next by Date: Re: saslauthd attack
- Previous by thread: Re: saslauthd attack
- Next by thread: Syslog for chroot-jailed SFTP users?
- Index(es):
 |