https://community.hpe.com/t5/operating-system-linux/sendmail-sent-mails-limit-thresholds/m-p/3897112#M25943 Hi,<BR /><BR /> One of the servers I admin is a sendmail server. It has &gt; 8000 accounts, and our users are majorly dumb users using dumb passwords.<BR /><BR /> Last Friday night, I've found out that one of the accounts (user 'simon' with pass 'simon') was used to send thousand of emails to randomly generated hotmail accounts. Due to it, we've been banned and now our connections to any of hotmail's MX time out. I've solved temporarily the problem using another IP for outgoing mails, but I know that's not the solution.<BR /><BR /> Of course the solution is setting strict and complex passwords, but this task can be done easiy due to politic issues in the company with the users, and will take some time (weeks, months) to be able to be done.<BR /><BR /> So I'd like to know if there's any way of limiting the amount of emails sent using an authed sesion per unit of time. For example... 100 mails per hour? Something in that way. I'm not talking about limiting the number of opened sessions as, in fact, the spammer opened "only" 200-300 sessions but in each session sent 10,20,30,40,50,60,etc emails. Limiting the number of rcpt's isnt a solution for this problem due to this.<BR /><BR /> Any suggestion for this?<BR /><BR />Thanks in advance.<BR /> Mon, 13 Nov 2006 08:05:37 GMT Ruben C. 2006-11-13T08:05:37Z https://community.hpe.com/t5/operating-system-linux/sendmail-sent-mails-limit-thresholds/m-p/3897112#M25943 Hi,<BR /><BR /> One of the servers I admin is a sendmail server. It has &gt; 8000 accounts, and our users are majorly dumb users using dumb passwords.<BR /><BR /> Last Friday night, I've found out that one of the accounts (user 'simon' with pass 'simon') was used to send thousand of emails to randomly generated hotmail accounts. Due to it, we've been banned and now our connections to any of hotmail's MX time out. I've solved temporarily the problem using another IP for outgoing mails, but I know that's not the solution.<BR /><BR /> Of course the solution is setting strict and complex passwords, but this task can be done easiy due to politic issues in the company with the users, and will take some time (weeks, months) to be able to be done.<BR /><BR /> So I'd like to know if there's any way of limiting the amount of emails sent using an authed sesion per unit of time. For example... 100 mails per hour? Something in that way. I'm not talking about limiting the number of opened sessions as, in fact, the spammer opened "only" 200-300 sessions but in each session sent 10,20,30,40,50,60,etc emails. Limiting the number of rcpt's isnt a solution for this problem due to this.<BR /><BR /> Any suggestion for this?<BR /><BR />Thanks in advance.<BR /> Mon, 13 Nov 2006 08:05:37 GMT https://community.hpe.com/t5/operating-system-linux/sendmail-sent-mails-limit-thresholds/m-p/3897112#M25943 Ruben C. 2006-11-13T08:05:37Z https://community.hpe.com/t5/operating-system-linux/sendmail-sent-mails-limit-thresholds/m-p/3897113#M25944 So, i think is better to change a password with something like : SimoN or SimoN123<BR /><BR />But if don't want, try to check the parameter :<BR />confCONNECTION_RATE_THROTTLE into the sendmail.mc<BR /><BR />This limit the max connection Mon, 13 Nov 2006 08:34:04 GMT https://community.hpe.com/t5/operating-system-linux/sendmail-sent-mails-limit-thresholds/m-p/3897113#M25944 Alpha977 2006-11-13T08:34:04Z https://community.hpe.com/t5/operating-system-linux/sendmail-sent-mails-limit-thresholds/m-p/3897114#M25945 Hi Ruben, Welcome to the forum (Bienvenido!!).<BR /><BR /><BR />Probably this is what you are looking for:<BR /><BR /><A href="http://www.milter.info/sendmail/milter-limit/" target="_blank">http://www.milter.info/sendmail/milter-limit/</A><BR /><BR />But you should re-check/enforce your access policy (firewall policy and relay policy) until you implement the password restrictions.<BR /><BR />Por favor, asegurate de ver tambien:<BR /><BR /><A href="http://forums1.itrc.hp.com/service/forums/helptips.do?#28" target="_blank">http://forums1.itrc.hp.com/service/forums/helptips.do?#28</A><BR /> Mon, 13 Nov 2006 08:38:50 GMT https://community.hpe.com/t5/operating-system-linux/sendmail-sent-mails-limit-thresholds/m-p/3897114#M25945 Ivan Ferreira 2006-11-13T08:38:50Z https://community.hpe.com/t5/operating-system-linux/sendmail-sent-mails-limit-thresholds/m-p/3897115#M25946 Check also:<BR /><BR />default_process_limit <BR />initial_destination_concurrency <BR />local_destination_concurrency_limit <BR />default_destination_concurrency_limit <BR /><BR />and <BR /><BR />smtpd_error_sleep_time<BR />smtpd_soft_error_limit<BR />smtpd_hard_error_limit <BR /><BR />This last 3 parameters are for the errors (if it generate address, more are wrong...) Mon, 13 Nov 2006 08:38:56 GMT https://community.hpe.com/t5/operating-system-linux/sendmail-sent-mails-limit-thresholds/m-p/3897115#M25946 Alpha977 2006-11-13T08:38:56Z