Re: Used to run my own mail server 6 or 7 years ago, but stopped
At one point, it was getting 15k scans/hr from cracking scripts
That's trivially defeated by using rate-limiting. You can do this directly on the MTA[1], or you can do it with iptables. The former gives you more visibility, the latter uses less CPU load. I use a combination of both...
There are so many more threats these days that it takes a team of people working 24/7 to keep highly vulnerable systems (like mail servers) safe
Those of us who are doing this would say you're wrong...
you are probably just going to create yet another easy to crack/abuse endpoint on the interwebs....
There are a number of tools you really should use to check that your server is properly configured. It's really not that difficult to nail down properly...
Vic.
[1] sendmail does this - I assume the others do as well, but I haven't checked.
Biting the hand that feeds IT
