From owner-freebsd-questions@FreeBSD.ORG Wed May 30 18:15:56 2012 Return-Path: Delivered-To: freebsd-questions@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 0A0F5106566C for ; Wed, 30 May 2012 18:15:56 +0000 (UTC) (envelope-from jbiquez@intranet.com.mx) Received: from intranet.com.mx (intranet.com.mx [200.33.246.7]) by mx1.freebsd.org (Postfix) with ESMTP id D76758FC0A for ; Wed, 30 May 2012 18:15:55 +0000 (UTC) Received: from PC2.intranet.com.mx (189.144.175.6) by intranet.com.mx with ESMTP (EIMS X 3.3.9) for ; Wed, 30 May 2012 13:09:11 -0500 X-Mailer: QUALCOMM Windows Eudora Version 7.1.0.9 X-Priority: 1 (Highest) Date: Wed, 30 May 2012 13:08:30 -0500 To: freebsd-questions@FreeBSD.org From: Jorge Biquez Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Message-ID: <3421246151-1670043725@intranet.com.mx> Cc: Subject: Firewall, blocking POP3 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 May 2012 18:15:56 -0000 Hello all. I am sorry if the question is too basic. I have a personal small machine running FreeBSD 7.3-PRERELEASE #0: It runs as my web and email server for a cuple of domains. NO clients no other users have access to it. Is there any , easy/faster way to stop POP3 from being working. I am running qpopper to be able to download emailes. I decided to use sendmail since only a few accounts are there and I do not need more but in the last days the server has been under a big attack where people is trying to guess users and passwords. I am using a strong schema of passwords so no problem on that but I rather to be sure . I was thinking on the following options. - Stopping the service, port 110 to respond and open it everytime I want to download email. - Install a firewall and block all the IP's but they are trying from a lot different ones. - Maybe changing the port for pop3 and change all my devices to use another port? In case I need to start from zero and install a newer version I can do it, no problem at all but I am not sure if that helps to do things a easier way. Maybe install a complete different schema of sending receiving email (perhaps do not use sendmail to send , change to postfix and use IMAP instead of pop3. Would that help? Thank in advance for all your comments and help. Jorge Biquez