I had 28,000 spam messages sent from one outside IP address to one mailbox.
Questions to hopefully learn from those more experienced than me.
1. I blacklisted SMTP for the spam IP in Security > Blacklist. Is there a better way to handle this?
2. Is there a way to configure Smartermail to detect such attacks (say something like 200 emails in 1 hour from the same ip, block the emails) moving forward?
3. What is the best way to delete the bad messages from spool short of deleting in 200 message chunks, which is what I did. Maybe go to the directory in the SM server and delete out of spool there?
4. Which is the best place to report the IP to help prevent the same thing happening to someone else?
Thank you for any and all help you might provide.