Community Knowledge Base

IDS Violations

This report shows the number of attacks on the server. For example, if a system administrator notices an increase in DOS or harvesting violations, he may review server logs to determine the IP address that is triggering the violations and consider permanently blocking the IP.

An administrator can change the dates of the report as well as the "Step", which means whether you want to see the report by hour, day, week, month or quarter. (Based on the start and end dates -- so a quarterly report would need a full 3 months selected.) Admins can change the chart type by clicking the chart icon next to the date, or even export the report as needed. Each column in the report is sortable, either ascending or descending, and the sort can change simply by clicking the column header.

The following report items are available:

  • Day - The day of the week covered by the report.
  • Brute Force by Email - The number of brute force attacks handled that come in for one or more email addresses. (E.g., login attempts.)
  • Brute Force by IP - The number of brute force attacks handled that come in from one or more IP addresses.
  • DoS - The total number of Denial of Service (DoS) violations.
  • Harvesting - The total number of harvesting violations.
  • Internal Spammer - The total number of spam violations from users on the SmarterMail server.
  • Password Retrieval - The number of "Forgot Password" attempts that were handled.
  • Spammer by Bounces - The number of users quarantined or disabled who have sent a large number of messages that received bounces. (This could indicate spamming.)

It's also possible to export this data in CSV format for use in other applications, such as Microsoft Excel, Google Sheets, Apple Numbers, etc. To do this, simply click the page icon in the upper right hand corner of the reports page. Once clicked, you'll be able to save the data and name the file to whatever you want.