Displaying 4 results from an estimated 4 matches for "fail12ban".
Did you mean:
fai2ban
2019 Apr 11
5
Mail account brute force / harassment
...subsequent attempts from the same
address. I currently have several thousand addresses blocked due to
dovecot login failures. My firewall is set to log these so I can see
that few repeat, those that do repeat have intervals of >1 week.
Blocking these has minimal effect (other than to clog fail12ban and the
firewall).
> - it will continue bothering other servers and admins
Which is why a dnsbl for dovecot is a good idea. I do not believe the
agents behind these login attempts are only targeting me, hence the
addresses should be shared via a dnsbl.
2019 Apr 11
0
Mail account brute force / harassment
...subsequent attempts from the same
address. I currently have several thousand addresses blocked due to
dovecot login failures. My firewall is set to log these so I can see
that few repeat, those that do repeat have intervals of >1 week.
Blocking these has minimal effect (other than to clog fail12ban and the
firewall).
> - it will continue bothering other servers and admins
Which is why a dnsbl for dovecot is a good idea. I do not believe the
agents behind these login attempts are only targeting me, hence the
addresses should be shared via a dnsbl.
2019 Apr 11
0
Mail account brute force / harassment
...from the same
> address.? I currently have several thousand addresses blocked due to
> dovecot login failures.? My firewall is set to log these so I can see
> that few repeat, those that do repeat have intervals of >1 week.
> Blocking these has minimal effect (other than to clog fail12ban and the
> firewall).
>
>> ?? - it will continue bothering other servers and admins
>
> Which is why a dnsbl for dovecot is a good idea.? I do not believe the
> agents behind these login attempts are only targeting me, hence the
> addresses should be shared via a dnsbl....
2019 Apr 11
5
Mail account brute force / harassment
On Thu, 11 Apr 2019 at 13:24, Marc Roos via dovecot <dovecot at dovecot.org>
wrote:
>
>
> Say for instance you have some one trying to constantly access an
> account
>
>
> Has any of you made something creative like this:
>
> * configure that account to allow to login with any password
> * link that account to something like /dev/zero that generates infinite