cscli scenarios install crowdsecurity/exim-spamSpam detection for Exim (capacity of 3 and leakspeed of 360s)
1type: leaky2name: crowdsecurity/exim-spam3description: "Detect spam on Exim"4#debug: true5filter: "evt.Meta.log_type == 'spam-attempt' && evt.Meta.service == 'exim'"6groupby: evt.Meta.source_ip7capacity: 38leakspeed: "360s"9blackhole: 5m10labels:11 confidence: 312 spoofable: 013 behavior: "smtp:spam"14 label: "Exim Spam"15 remediation: true16 service: smtp17