Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Brute force SMTP attack right now *help*
Top Forums UNIX for Advanced & Expert Users Brute force SMTP attack right now *help* Post 302262221 by chatwizrd on Wednesday 26th of November 2008 04:36:45 PM
Old 11-26-2008
netstat -na | grep 587

This should tell you all connections on the saslauthd. If they are the same ip address you can just block it. If they are different you might have to make a script or something to block them.
 

8 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Apache brute force attack

Hi, I'm trying find out if there is a way to stop a brute force attack on a Webmail site. I'm trying to setup a webmail access, but I would like to prevent too many invalid logins from the same IP. I've looked into Snort, but I was wondering if there was an application level firewall that can... (1 Reply)
Discussion started by: nitin
1 Replies

2. Cybersecurity

What I think is a DoS attack

About 3 days ago our Apache logs started filling with the following errors: mod_ssl: SSL handshake failed (server <weberver>:443, client 41.235.234.172) (OpenSSL library error follows) OpenSSL: error:1408A0B7:SSL routines:SSL3_GET_CLIENT_HELLO:no ciphers specified These initially were... (1 Reply)
Discussion started by: ccj4467
1 Replies

3. Cybersecurity

Found attack from

Hi, I have a belkin router installed and a look at the security log has got me worried a little bit. Security log: Fri Jan 29 20:41:46 2010 =>Found attack from 68.147.232.199. Source port is 58591 and destination port is 12426 which use the TCP protocol. Fri Jan 29 20:41:46 2010 ... (1 Reply)
Discussion started by: jld
1 Replies

4. Cybersecurity

Network attack - so what?

In my logs I find entries about attacks on my system. I know IP addresses, I know date and time and I know what they tried to do. So what's the best I can do now? Tell everybody that there are cybercriminals on that network? Write an email to their admin? Anything else? (10 Replies)
Discussion started by: Action
10 Replies

5. Cybersecurity

UUCP attack?

Is this an attack attempt? I got an e-mail from 'uucp Admin' last night and again this morning: What does it mean and what can I do about it? Thanks (4 Replies)
Discussion started by: ctafret
4 Replies

6. Cybersecurity

DDoS and brute force attack

How to protect DDoS and brute force attack. I want to secure my server and block attacker. (1 Reply)
Discussion started by: romanepo
1 Replies

7. Shell Programming and Scripting

Expect script that simulates a SSH brute force attack

I want to test the effectiveness of sshguard on some of my systems so I'm trying to write a script that simulates a brute force attack by sending a bunch of different username and password combinations to the servers being tested. So far I have this: #!/usr/local/bin/expect set timeout 3... (5 Replies)
Discussion started by: ph0enix
5 Replies

8. Emergency UNIX and Linux Support

DDOS attack please help!

Dear community, my site was recently attacjed by DDOS technique and goes down in a few minutes. My site runs under Debian/Apache2/Mysql. I identified the IPs who attack me and block it through iptable firewall from debian. Something like: iptables -D INPUT -s xxx.xxx.xxx.xxx -j DROP This... (7 Replies)
Discussion started by: Lord Spectre
7 Replies

LEARN ABOUT DEBIAN

calibre-smtp

CALIBRE-SMTP(1) 						      calibre							   CALIBRE-SMTP(1)

NAME

       calibre-smtp - part of calibre

SYNOPSIS

       calibre-smtp  [options] [from to text]

DESCRIPTION

       Send  mail using the SMTP protocol. calibre-smtp has two modes of operation. In the compose mode you specify from to and text and these are
       used to build and send an email message. In the filter mode, calibre-smtp reads a complete email message from STDIN and sends it.

       text is the body of the email message.  If text is not specified, a complete email message is read from STDIN.  from is the  email  address
       of the sender and to is the email address of the recipient. When a complete email is read from STDIN, from and to are only used in the SMTP
       negotiation, the message headers are not modified.

       Whenever you pass arguments to calibre-smtp that have spaces in them, enclose the arguments in quotation marks.

OPTIONS

       --version
	      show program's version number and exit

       -h, --help
	      show this help message and exit

       -l, --localhost
	      Host name of localhost. Used when connecting to SMTP server.

       -o, --outbox
	      Path to maildir folder to store failed email messages in.

       -f, --fork
	      Fork and deliver message in background. If you use this option, you should also use --outbox to handle delivery failures.

       -t, --timeout
	      Timeout for connection

       -v, --verbose
	      Be more verbose

   COMPOSE MAIL
       Options to compose an email. Ignored if text is not specified

       -a, --attachment
	      File to attach to the email

       -s, --subject
	      Subject of the email

   SMTP RELAY
       Options to use an SMTP relay server to send mail. calibre will try to send the email directly unless --relay is specified.

       -r, --relay
	      An SMTP relay server to use to send mail.

       --port Port to connect to on relay server. Default is to use 465 if encryption method is SSL and 25 otherwise.

       -u, --username
	      Username for relay

       -p, --password
	      Password for relay

       -e, --encryption-method
	      Encryption method to use when connecting to relay. Choices are TLS, SSL and NONE. Default is TLS. WARNING: Choosing NONE	is  highly
	      insecure

SEE ALSO

       The User Manual is available at http://manual.calibre-ebook.com

       Created by Kovid Goyal <kovid@kovidgoyal.net>

calibre-smtp (calibre 0.8.51)					   January 2013 						   CALIBRE-SMTP(1)
All times are GMT -4. The time now is 06:17 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy