Hi, we have a problem with qmail. I know it's not directly a security issue but it's a problem with spam attacks, so it's not really OT I think. The problem: A spammer uses random generated addresses at one of our domains. Lot's of the spam mails get rejected (invalid addresses etc.), and a bounce is sent to the random address at our hosts. QMail smtp accepts this mail, finds out that the receipient does not exists, and generates a bounce for that bounce (new mail generated). This bounce bounces too, and a mail is sent to postmaster. Now we got around 7200 Mails[bounces]/hour, resulting in 7200 bounces of bounces plus 7200 triple bounces (to local postmaster). The server cannot send so many mails, and in the queue there are currently around 50K mails, getting more and more. It's a pitty that qmail-smtpd accepts a mail if the target domain is in rcpthosts without checking virtualdomains, and thus a lot of bounces become generated. Now I spool all unknown addresses to a trash file. This is a lot faster than bouncing of course, and now the queue gets smaller, and the mailserver is working (slow, but working). Does anybody have an idea how to handle such problems? oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.