Ki Song wrote:
One reason why the maillog is so huge is because all the messages that are trying to be sent to this domain (knifecenter.com) that are the target of spam ... basically, they are sending to any and all potential names in the knifecenter domain ... for example, a particular server tries to send a message (probably spam) to: a@xxxxxxxxxxxxxxx, then aa@xxxxxxxxxxxxxxx, then ab@xxxxxxxxxxxxxxx, then ac@xxxxxxxxxxxxxxx, etc. The maillog contains all the rejected messages because those addresses do not exist. How do I continue to reject the messages to erroneous addresses without showing it in the maillog?
You don't. You firewall off the server that's doing the dictionary attack and then your mail server will never see the connections from it, hence no logging.
Paul.
