kfasick
asked on
How to block exchange authentication attack
It looks like some it trying to hack into our email server. I'm running a SMTP monitor and it looks like random user names and passwords are hitting the server. Is there a way to stop it? I've posted the smtp log.
SMTP-Log.txt
SMTP-Log.txt
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Also checked for open relay, that came up clean.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I blocked port 25 on the firewall and the attack continues.
ASKER