Is there any new and built-in mechanism available for Zimbra to setup and auto rate limit spam outbursts? I am really not into installing policyd with Apache and Sqlite onto ZCS server.
What I am thinking is somehow employ some shell script to look for possibly compromised accounts, like this one:
Code: Select all
cat /var/log/zimbra.log | sed -n 's/.*sasl_username=//p' | sort | uniq -c | sort -nr
Then script should just inform admin and user of the action, then LOCK/BLOCK this user account.
It would be very light alternative to all mambo-jumbo with policyd and SQL.
Thoughts?