Lorenzo Perone writes:
Hi List, Hi Sam,I was wondering whether there is some way in Courier (using authlib, using authmysql) to catch the event of a multiple login failure, such as in the case of spambots trying to bruteforce an account, to temporarily ban the IP?Just had a look at the docs but couldn't find anything... is there any way to implement it?
Just have to have something parsing mail logs, which will record the client's IP address, and a very distinctive error message.
But, I don't believe that spambots are really that much of an issue here. The built-in error delay makes spambots give up rather quickly.
pgpwWGGqtYiJn.pgp
Description: PGP signature
------------------------------------------------------------------------------ The ultimate all-in-one performance toolkit: Intel(R) Parallel Studio XE: Pinpoint memory and threading errors before they happen. Find and fix more than 250 security defects in the development cycle. Locate bottlenecks in serial and parallel code that limit performance. http://p.sf.net/sfu/intel-dev2devfeb
_______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
