Michael Fox:
> I haven't implemented postscreen yet, but plan to. So this question is for
> the postscreen experts here.
>
> As I understand it from the documentation, postscreen protects postfix from
> having to deal with most attack vectors, including higher volume attacks.
> So, does it make sense to also use something like fail2ban to block IPs that
> postscreen (or postfix) logs repeatedly as offenders? Or is postscreen
> sufficient to protect posfix?
I would not bother, except in extreme cases where the same IP address
makes thousands and thousands of connections.
Wietse
