Re: [courier-users] Re: Esmtp ddos vulnerability in 0.40.0.20021026? - William Dell Wisner - net.sourceforge.lists.courier-users

6 messages in net.sourceforge.lists.courier-usersRe: [courier-users] Re: Esmtp ddos vu...

From	Sent On	Attachments
Stephen S. Kelley	Jan 3, 2003 8:41 am
Sam Varshavchik	Jan 3, 2003 2:56 pm
Stephen S. Kelley	Jan 3, 2003 5:13 pm
Sam Varshavchik	Jan 3, 2003 7:57 pm
William Dell Wisner	Jan 4, 2003 12:58 am
Sam Varshavchik	Jan 4, 2003 8:34 am

Subject:	Re: [courier-users] Re: Esmtp ddos vulnerability in 0.40.0.20021026?
From:	William Dell Wisner (will...@dell.wisner.name)
Date:	Jan 4, 2003 12:58:42 am
List:	net.sourceforge.lists.courier-users

There's no reason to accept more than four concurrent ESMTP connections from the same IP address. Reduce MAXPERC to 10, and MAXPERIP to 4.

Oh, yes there is. It's called NAT.

The problem is particularly acute if you've got people reading their mail using Mozilla, as it seems to like to open multiple concurrent connections to the IMAP server. Two people behind the same NAT gateway reading their mail with Mozilla at the same time can quite easily exhaust a four connection limit.

	Start a set with this search
	Include this search in one of my sets
	Exclude this search from one of my sets