jdd@dodin.org wrote:
Le 08/01/2018 à 22:52, Greg Freemyer a écrit :
I no longer think postfix or relaying was the problem. Instead it was a penetration of an old Wordpress test site I had.
I managed a wordpress install some years ago, but abandoned it, because it was a nightmare to make secure!!
It's not that bad - <location /xmlrpc.php> Order deny,allow deny from all Allow from none </Location> and add protection to wp-login.php. Slow it down or add a captcha or even disable for external access. Also make sure the software is up-to-date. -- Per Jessen, Zürich (10.1°C) http://www.dns24.ch/ - your free DNS host, made in Switzerland. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org