Displaying 20 results from an estimated 2000 matches similar to: "IP drop list"
2015 Mar 02
1
IP drop list
On March 2, 2015 10:50:59 PM Dave McGuire <mcguire at neurotica.com> wrote:
> On 03/02/2015 05:34 AM, Joseph Tam wrote:
> >>> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets
its not a big hint its not called denynets is it ?
> I myself just want a mechanism to deny certain IP addresses when I
> spot them, regardless of the implementation. But
2015 Mar 02
2
IP drop list
> >>> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets
rethink why its allownets not denynets
> 45K+ IPs will work in a recent table
> i have them too but for smtp only like
have you seem a single user with 45k ips that does not make logs of login
fails ?
2015 Mar 02
0
IP drop list
Am 02.03.2015 um 11:34 schrieb Joseph Tam:
> Dave McGuire writes:
>
>>> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets
>>>
>>> then setup fail2ban to manage extrafields
>>
>> Now that's a very interesting idea, thank you! I will investigate this.
>
> If you don't expect yor firewall to handle 45K+ IPs, I'm not how
2015 Mar 03
2
IP drop list
Dave McGuire writes:
>>>> then setup fail2ban to manage extrafields
>>>
>>> Now that's a very interesting idea, thank you! I will investigate this.
>>
>> If you don't expect yor firewall to handle 45K+ IPs, I'm not how you
>> expect dovecot will handle a comma separated string with 45K+ entries
>> any better.
>
> My
2015 Mar 02
2
IP drop list
On 03/01/2015 06:34 PM, Benny Pedersen wrote:
>> The other side of this equation, Postfix, has had this capability
>> for years. Why it hasn't been added to dovecot is a mystery. It's
>> the only thing (really, the ONLY thing!) that I dislike about dovecot.
>
> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets
>
> then setup fail2ban to
2015 Mar 01
6
IP drop list
On 03/01/2015 04:25 AM, Reindl Harald wrote:
>> I wonder if there is an easy way to provide dovecot a flat text
>> file of ipv4 #'s which should be ignored or dropped?
>>
>> I have accumulated 45,000+ IPs which routinely try dictionary
>> and 12345678 password attempts. The file is too big to create
>> firewall drops, and I don't want to compile with
2011 Jan 11
4
Denying authentication
Hello,
I've been running dovecot for over 3 years now and it works
with no problems. I have it setup so that it authenticates users against
Active Directory via LDAP and so far no problems.
What I would like to know is if there is any way that I
could deny access for users trying to access email via cellphones or email
clients outside the company. I can
2014 Oct 22
2
special "what's my ip" pop account
Hello,
I like to enable the allow_nets Feature
(http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets)
for my customers. To help them knowing there own IP I imagine a
special mailbox/loginuser at the pop3 server.
That user could give a valid pop3 answer from a dummy pop3 server or
simply throw a login error with customised answer containing the IP
information.
Has anybody done
2015 Sep 17
3
restrict map-login by geoip?
Is there a way to restrict my user logins from a set of IPs? For example, all my users are in the US so there shouldn't be any logins from other countries. Can I tell dovecot to restrict logins to a CIDR list of US IPs? Can someone point me to docs on how to set this up? I've searched but haven't found how to accomplish this.
Thanks,
-Terry
Terry Barnum
digital OutPost
2008 Apr 07
3
feature request: deny IP address via database
Hey folks. One feature I'd really like to see in dovecot is the
ability to point it at a database (with a configurable query) and
have it allow or deny a connection based on looking up the source IP
address in that database.
I run Postfix, and I've got it configured to use a database server
for its smtpd_client_restrictions checks. Ideally I'd like to point
dovecot at
2015 Sep 17
2
restrict map-login by geoip?
Thanks Benny. I should've said I saw AllowNets but in researching it looked like it expected a smaller comma separated list, not hundreds of IP blocks. Is that what you are using to accomplish this?
Thanks,
-Terry
iPhone says Hello World!
> On Sep 16, 2015, at 6:31 PM, Benny Pedersen <me at junc.eu> wrote:
>
> Terry Barnum skrev den 2015-09-17 02:32:
>
>> I've
2007 Jul 10
2
Connecting to dovecot/imap without a password
I have written a script that connects (localhost) to the dovecot/imap
server and performs various maintenance on my mail, by folder.....
deleting old stuff, keeping the n most recent, that sort of crap, er
good stuff. :-)
My script is written in php (I use the various imap_* functions), and it
connects to the imap server running on the same machine... is there a
way to connect to the server
2010 May 10
1
about acl
I use dovecot, vpopmail.
I wish to restrict a mail user's login to its mailbox according to its ip
address.
I don't wish other users to be affected .
Namely, for instance, abc at domain.com can login to its mailbox from a few
specific ip addresses but the same user will not able to login from
anywhere.
Meanwhile normally other mail users can login to their mailboxes from all ip
2019 Apr 30
8
Feature request: exclude IP/network in allow_nets extra field
Dear all,
We use `allow_nets`[1] to restrict login clients, it works fine.
Recently we need to allow some users to login from everywhere except some IP/networks, how can we accomplish this with "allow_nets"?
Tried allow_nets="!a.b.c.d", but Dovecot reports error "allow_nets: Invalid network '!a.b.c.d'".
Can we have this feature?
i guess it should be done
2015 Mar 02
0
IP drop list
On 03/02/2015 05:34 AM, Joseph Tam wrote:
>>> http://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets
>>>
>>> then setup fail2ban to manage extrafields
>>
>> Now that's a very interesting idea, thank you! I will investigate this.
>
> If you don't expect yor firewall to handle 45K+ IPs, I'm not how you
> expect dovecot will
2018 Aug 23
1
allow_nets based on RBL
This was brought up in 2014, and left without conclusion, so I thought
it would be time to bump it :)
I would love a way to do allow_nets based on an RBL check, could this be
added to the feature-list?
https://wiki2.dovecot.org/PasswordDatabase/ExtraFields/AllowNets
Thanks
--
Tom
2007 Jun 02
5
Is there a "connect acl" ?
Hi,
I have been reading the acl documentation and it seems that a "connect acl"
is not available.
I need to limit the users that can login in an IP number, is that
posible with
dovecot 1.0? (i.e. only these users can login from the Internet)
Or a new plugin should be written? It is complicated to do that?
Thanks
Oliver
--
Oliver Schulze L. | http://tinymailto.com/oliver
Asuncion
2015 Mar 02
6
IP drop list
Am 02.03.2015 um 18:56 schrieb Robert Schetterer:
> perhaps and i mean really "perhaps" go this way
>
> https://sys4.de/de/blog/2014/03/27/fighting-smtp-auth-brute-force-attacks/
>
> https://sys4.de/de/blog/2012/12/28/botnets-mit-rsyslog-und-iptables-recent-modul-abwehren/
>
> 45K+ IPs will work in a recent table
> i have them too but for smtp only like
>
>
2007 Apr 29
2
Method to globally limit network access
G'day All,
I am new to dovecot. I've run across the "allow_net" to restrict access
on what seems like a per user basis. Is the a way to global limit access
to one or more networks?
Marcus O.
2008 Aug 12
2
restrict webmail access
Hi
I'm using dovecot imap with ldap accounts. User management interface is
phamm. Internal clients connect directly using imap client. External
clients must use webmail (squirrelmail). But not everyone is supposed to
use webmail. Is there any way to control who is allowed to log in from a
specific IP (webmail ip)?
Thanx for suggestions
Jan