最近病毒垃圾邮件又多起来了,使用iptables 和 hosts.deny 都不能够阻挡。(这方面我还没学好)以下先记录一下修改内容。
iptables 添加:
iptables -A RH-Lokkit-0-50-INPUT -s 220.163.11.68 -j REJECT
service iptables save
hosts.deny 添加:service iptables save
#Deny all connection
ALL: 218.82.99.142 210.158.71.68 220.163.11.68
最后还是使用了 /etc/tcp.smtp 直接从 qmail 中阻止。ALL: 218.82.99.142 210.158.71.68 220.163.11.68
# Denied IPs
220.163.11.68:deny
更改后需要 qmailctl cdb; qmailctl restart
220.163.11.68:deny
这里有一个很不错的/etc/tcp.smtp 样本 http://drwho.virtadpt.net/tcp.smtp
查看全文浏览我的 /etc/tcp.smtp
/etc/tcp.smtp
# Denied IPs
220.163.11.68:deny
# Qmail-Scanner at all for mail from 127.0.0.1
127.:allow,RELAYCLIENT="",RBLSMTPD="",QMAILQUEUE="/var/qmail/bin/qmail-queue"
#
# Use Qmail-Scanner with SpamAssassin on any mail from the rest of the world
:allow,LOCALMFCHECK="",QMAILQUEUE="/var/qmail/bin/qmail-scanner-queue.pl"
阻止结果 /var/log/qmail/smtp/current
@4000000041819814255eeec4 tcpserver: deny 28722 dalouis.com:61.152.251.68:25 :220.163.11.68::55108
@40000000418198142f0d0564 tcpserver: deny 28723 dalouis.com:61.152.251.68:25 :220.163.11.68::55112
@400000004181981438becd54 tcpserver: deny 28724 dalouis.com:61.152.251.68:25 :220.163.11.68::55114
@400000004181981508a7918c tcpserver: deny 28725 dalouis.com:61.152.251.68:25 :220.163.11.68::55116
@4000000041819815188d54ec tcpserver: deny 28728 dalouis.com:61.152.251.68:25 :220.163.11.68::55121
@40000000418198152cd84344 tcpserver: deny 28729 dalouis.com:61.152.251.68:25 :220.163.11.68::55126
@4000000041819816078efd6c tcpserver: deny 28730 dalouis.com:61.152.251.68:25 :220.163.11.68::55132
@4000000041819816186cb944 tcpserver: deny 28735 dalouis.com:61.152.251.68:25 :220.163.11.68::55136
@4000000041819918224e95cc tcpserver: deny 29053 dalouis.com:61.152.251.68:25 :220.163.11.68::57860
(END)