27 Jun
2023
27 Jun
'23
3:17 a.m.
On Thu, 22 Jun 2023, Michael Peddemors wrote:
- Use services like RATS-AUTH to block IPs that can safely be blocked as known hackers..
Cool. Are there other DNSRBLs (apart from bl.blocklist.de) that list BFD attack IPs?
- Use services like RATS-NULL (or SpamHaus DROP lists) right in the firewall level. There are SOME networks that should simply be 'unplugged'
Can't find it in https://spamrats.com/. Is it an DNSRBL or downloadable file?
- Turn off port 110 (well, all plain text authentication) 90% less email compromise reports when you do..
That will disable STARTTLS though. Even though it's not plaintext, maybe that is a good thing as it avoids MITM banner stripping attacks.
Joseph Tam jtam.home@gmail.com