A few days ago I successfully switched my existing mail server to hMailServer. I was browsing my LOG files and found some IPs tried to DOS the SMTP service.
I made a tool which checks all of the LOG files and looks for 530 and 535 errors, collects the IP addresses and the times and prints it out to the screen in this format:
--> IP Address
Date & Time (tab) Error Code
You only have to browse the output to check which are the most problematic IPs to ban
Script was written in PERL and requires only 1 variable to set to let it work. I attached a CMD file too, which collects the results and opens them in a Notepad.
This section contains scripts that hMailServer has contributed with. hMailServer 4 is needed to use these.
2 posts • Page 1 of 1
Nice. However I doubt they were trying to DOS the SMTP service. Much more likely it was spammers who tried to locate an account they could use to send spam. Spammers often tries to locate an account by testing weak passwords. In hMailServer 5.1 there will be auto-ban functionality to prevent these.