Op 08-04-19 om 17:35 schreef Michael Peddemors: > However, traditional methods like 'fail2ban' to block those attacks > won't work too well into the future, with things like Carrier Grade > Nat (one device can poison an IP Address used by thousands). > We're not even blocking those attacks. We're just loging them. When some accounts successfully authenticate from an IP address which generates excessive authentication failures, the account gets locked out. It just means the account has a weak password, or the password leaked. Something you might want to know anyway. We haven't seen false positives since we've implemented this. With carrier grade NAT this indeed possibly can create an issue for innocent users, but haven't seen that yet.
Regards, Frido _______________________________________________ mailop mailing list [email protected] https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
