Here are my authenticators:
dovecot_plain:
driver = dovecot
public_name = PLAIN
server_socket = /var/run/dovecot/auth-client
server_set_id = $auth1
dovecot_login:
driver = dovecot
public_name = LOGIN
server_socket = /var/run/dovecot/auth-client
server_set_id = $auth1
How would I add something like server_condition that would let me do
something on a failed login?
On 6/5/2013 11:01 AM, Dave Restall - System Administrator,,, wrote:
Hi Marc,
Is there a way for an ACL to do something on authentication failure? I'm
trying to trap the IP addresses of hackers trying to guess passwords.
Thanks in advance
Have a look at acl_smtp_auth. I also use an extended or condition on the
authentication :-
....
server_condition = ${if or
{${authenticated_lookup} {${perl{Run_A_PERL_SCRIPT_HERE}}}}}
My actual condition is a bit more complicated but the above serves
to illustrate.
It basically says if the authenticated lookup succeeds, then continue
if it fails then run the perl script. You can then do the processing
with the perl script - I use it to count failed attempts and log them
to a file - it could quite easily be used to firewall IP addresses etc.
Typical old fashioned shell script short circuit.
Regards,
D
lists/exim/users/2013-06-05.tx exim-users
+----------------------------------------------------------------------------+
| Dave Restall, Computer Anorak, Geek, Cyclist, Radio Amateur G4FCU, Bodger |
| Mob +44 (0) 7973 831245 Skype: dave.restall Radio: G4FCU |
| email : [email protected] - Anti-SocialMediaist - Web : Not Ready Yet :-( |
+----------------------------------------------------------------------------+
| Q: What do you call a half-dozen Indians with Asian flu? A: |
| Six sick Sikhs (sic). |
+----------------------------------------------------------------------------+
--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
