Sam Varshavchik a écrit : > Leigh S. Jones, KR6X writes: > >> « HTML content follows » >> >> I'm getting fed up with my bandwidth being gobbled up by numerous >> attackers running dictionary attacks on my users passwords for pop3 >> and imap logins. To that end, I'm hoping to enlist the aid of >> couriertcpd. The way I understand it, I need to build an access >> file with IP addresses followed by a tab then the keyword deny, >> compile it into a binary database using a script similar to >> makesmtpaccess, probably this would invoke >> /usr/lib/courier/courier/makedatprog through the script >> /usr/lib/courier/makedat, and then add the line >> "-access=[filename.dat]" in /etc/init.d/pop3d, etc., pointing to my >> database when invoking the daemons. Have I got this all correctly? > > Yes. There's a script called 'makedat' that's a generic version of > makesmtpaccess, that you can use. > > Having said all that -- this is a losing battle. You'll spend the rest > of your life maintaining this list manually, so you should cobble > together some script that parses the log files, and inserts IP > addresses into the blacklist. fail2ban is designed to fit your needs.
HTH. Jerome Blion. ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
