In this guide, you will learn about the RATS-AUTH Authentication Restriction Security Policy feature, including the following information:
- What is RATS-AUTH?
- RATS-AUTH Authentication Restriction Security Policy Feature
- Feature Availability
What is RATS-AUTH?
RATS-AUTH is a list of IP addresses that have been detected as being the source of a trojan/bot attack specifically used to try and guess passwords, or similar technique by attempting to just 'authenticate' without really sending email. Note that even normal email servers occasionally end up on this list when the server is compromised, seriously misconfigured, or shares an IP gateway with infected machines.
RATS-AUTH helps to prevent email accounts on your server from being compromised and used in spam campaigns, which protects your email IP reputation.
For more information, please visit the SpamRATS website.
RATS-AUTH Authentication Restriction Security Policy Feature
The RATS-AUTH Authentication Restriction Security Policy blocks SMTP authentication from connecting IP addresses listed on RATS-AUTH BMS list.
This feature is only available on the PLUS and PRO versions of MagicSpam, and can only be set at the global level through the following interface:
- MagicSpam Admin-level Interface >> Security >> Source Based Authentication Restrictions
By default, the RATS-AUTH Authentication Restriction Security Policy is set to OFF.
This feature is only available on the PLUS and PRO version of MagicSpam, starting from these versions onwards:
- MagicSpam PRO for Plesk 2.1.16-1
- MagicSpam PRO for cPanel 2.1.15-2
- MagicSpam PRO for DirectAdmin 2.1.14-1
- MagicSpam PRO for InterWorx 2.1.4-1
- MagicSpam PLUS for MailEnable 2.1.11-1
- MagicSpam PLUS for Zimbra 2.1.11-1