Michael Fox: > I haven't implemented postscreen yet, but plan to. So this question is for > the postscreen experts here. > > As I understand it from the documentation, postscreen protects postfix from > having to deal with most attack vectors, including higher volume attacks. > So, does it make sense to also use something like fail2ban to block IPs that > postscreen (or postfix) logs repeatedly as offenders? Or is postscreen > sufficient to protect posfix?
I would not bother, except in extreme cases where the same IP address makes thousands and thousands of connections. Wietse