Am Freitag, den 05.06.2009, 12:04 +1000 schrieb James Brown:
Looks like we are under a dictionary login attack on our POP server:
Jun 5 11:48:20 mail dovecot[2620]: pop3-login: Aborted login (auth
failed, 1 attempts): user=audrey, method=PLAIN, rip=85.189.169.94,
lip=192.168.1.9
Since
On Jun 5, 2009, at 2:07 AM, henry ritzlmayr wrote:
Interesting for me is that you are on v1.2RC4. Timo wrote yersterday
that with v1.2+ after every login failure the delay for the next
attempt
should grow. When I take a look at your timestamps this is obviously
not
working on your system.
* James Brown jlbr...@bordo.com.au:
Looks like we are under a dictionary login attack on our POP server:
...
Any suggestions on how to prevent this?
apt-get install fail2ban
--
Ralf Hildebrandt
Postfix - Einrichtung, Betrieb und Wartung Tel. +49 (0)30-450 570-155
Timo Sirainen pisze:
On Jun 4, 2009, at 10:01 AM, Lenthir wrote:
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
+OK POP3 [127.0.0.1] server ready
user krzys
+OK User name accepted, password please
pass wew
-ERR Bad login / Bledne haslo lub login.
Connection closed by
Thanks Timo,
Dovecot would not boot without count=1 but i did change the settings to
cache authentications and we cant reproduce the error any more.
Thanks for your help!
Paul
-Original Message-
From: Timo Sirainen t...@iki.fi
To: Paul Carter-Brown paul.carter-br...@smilecoms.com
Cc:
I'm not sure I got everything here... Actually, I said it was a problem for
me, but it's not really.
Indeed, by just changing the setting auth_verbose to yes (but leaving
auth-debug to no), I get a line like
auth-worker(default): pam(USER,HOST): pam_authenticate() failed:
Authentication
Uldis Pakuls wrote:
Peter Sparkes wrote:
Jun 3 06:47:02 silkliving dovecot: POP3(sa...@aandt.co.uk):
file_dotlock_open() failed with file
/home/aandt.co.uk/sales/Maildir/dovecot.index.log: Permission denied
Jun 3 06:47:02 silkliving dovecot: POP3(sa...@aandt.co.uk): Couldn't
open INBOX:
http://dovecot.org/releases/1.2/rc/dovecot-1.2.rc5.tar.gz
http://dovecot.org/releases/1.2/rc/dovecot-1.2.rc5.tar.gz.sig
Great !
after all. I've been a bit busy with v2.0 changes recently.
How stable is 2.0 compared to 1.2.rc5 ?
On Jun 5, 2009, at 6:07 AM, Joan wrote:
after all. I've been a bit busy with v2.0 changes recently.
How stable is 2.0 compared to 1.2.rc5 ?
It's changing a lot, so it's not very stable.
Am Freitag, den 05.06.2009, 09:24 +0200 schrieb Lenthir:
Timo Sirainen pisze:
On Jun 4, 2009, at 10:01 AM, Lenthir wrote:
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
+OK POP3 [127.0.0.1] server ready
user krzys
+OK User name accepted, password please
pass
Every 2 or 3 days dovecot will not allow me to log into my IMAP server.
It keeps requesting my username and password. If I do a
/etc/init.d/dovecot restart it will start working again for a few days.
I have dovecot set up to use Maildir.
Dovecot Version: Not sure but it is the one that
Hi guys,
I'm looking at the possibility of running a pair of servers with
Dovecot LDA/imap/pop3 using internal drives with DRBD and GFS (or
other clustered FS) for the mail storage and ext3 for the root drive.
I'm currently using maildrop for delivery and Dovecot imap/pop3 with
the stores over
On Jun 5, 2009, at 4:58 AM, Cédric Laruelle wrote:
So to me, the only problem is the documentation as mentioned
initially by
Henri which says :
# More verbose logging. Useful for figuring out why authentication
isn't
# working.
auth_verbose = yes
OK, how about:
On Jun 5, 2009, at 9:26 AM, Robert Sloan wrote:
Every 2 or 3 days dovecot will not allow me to log into my IMAP
server. It keeps requesting my username and password. If I do a /
etc/init.d/dovecot restart it will start working again for a few
days. I have dovecot set up to use Maildir.
That would be just crystal clear and perfect for me :)
Cédric
-Message d'origine-
De : Timo Sirainen [mailto:t...@iki.fi]
Envoyé : vendredi 5 juin 2009 16:07
À : Cédric Laruelle
Cc : dovecot@dovecot.org
Objet : Re: [Dovecot] Dovecot under brute force attack - nice attacker
On Jun 5,
Guy schrieb:
Hi guys,
I'm looking at the possibility of running a pair of servers with
Dovecot LDA/imap/pop3 using internal drives with DRBD and GFS (or
other clustered FS) for the mail storage and ext3 for the root drive.
I'm currently using maildrop for delivery and Dovecot imap/pop3
From the log:
Jun 5 16:38:46 postamt dovecot: imap-login: Login: user=username,
method=PLAIN, rip=141.42.142.67, lip=141.42.4.250
Jun 5 16:38:49 postamt dovecot: IMAP(username): Panic: Trying to sync mailbox
Sent with open transactions
Jun 5 16:38:49 postamt dovecot: IMAP(username): Raw
Hi,
I'm running dovecot 1.0.15 and ran recently into a problem with the
folder separators when using sieve scripts.
The server is set to use a slash as a folder separator for all
namespaces and announces this correctly when issuing the NAMESPACE
command. We are using Ingo
Daniel Mayer schrieb:
Hi,
I'm running dovecot 1.0.15 and ran recently into a problem with the
folder separators when using sieve scripts.
The server is set to use a slash as a folder separator for all
namespaces and announces this correctly when issuing the NAMESPACE
command. We are
On 06/05/2009 11:46 AM, Robert Schetterer wrote:
Daniel Mayer schrieb:
Hi,
I'm running dovecot 1.0.15 and ran recently into a problem with the
folder separators when using sieve scripts.
The server is set to use a slash as a folder separator for all
namespaces and announces this correctly
Hi,
I need to run two Dovecot instances with totally different
authentication configs: first - passwordless, based on client SSL
certificate; and second - regular password based (LDAP, passwd etc.).
(As far as I know this cannot be achieved with single Dovecot instance;
if I'm mistaken, please
e-frog schrieb:
Daniel Mayer wrote:
Hi,
I'm running dovecot 1.0.15 and ran recently into a problem with the
folder separators when using sieve scripts.
According to http://wiki.dovecot.org/LDA/Sieve - Mailbox names with
fileinto
this only works for versions 1.1+
ups i am testing with
On 06/05/2009 05:13 PM, Robert Schetterer wrote:
e-frog schrieb:
Daniel Mayer wrote:
Hi,
I'm running dovecot 1.0.15 and ran recently into a problem with the
folder separators when using sieve scripts.
According to http://wiki.dovecot.org/LDA/Sieve - Mailbox names with fileinto
this only
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Using both 1.2rc5 and hg version a9d3108d0cec from today, when I run the
expire tools program, I receive the following error.
# /usr/local/sbin/dovecot --exec-mail ext
/usr/local/libexec/dovecot/expire-tool --test
/usr/local/sbin/dovecot --exec-mail
On Jun 5, 2009, at 9:26 AM, Zohan wrote:
I want to know whether it is possible at all. If possible, how do we
implement proper concurrent access (locking, etc.) between the two
instances to a single maildir-based store? I guess this should be
possible since I know Dovecot can operate NFS-backed
25 matches
Mail list logo