> We have been through the exact issue about two weeks ago. We had to route > entire blocks of IP to null0 in my router and also killed them in the > firewall. But I have seen a renewed "attack" from new ranges of IP's. Of > course, the results of these attacks are that we have been blacklisted in > just about every RBL. This of course is a major pain in the ass! We have > used SM for years now and this is the first time that we have seen this. > > I also saw 10 - 20 attempts to log in and then we had a successful login > on a users account. We have implemented sender_restriction and will > implement CAPTCHA after Thanksgiving. Do login failures use same username? There are 59 known trojans that steal user passwords. -- Tomas ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ ----- squirrelmail-users mailing list Posting guidelines: http://squirrelmail.org/postingguidelines List address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx List archives: http://news.gmane.org/gmane.mail.squirrelmail.user List info (subscribe/unsubscribe/change options): https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
