On Tue, Apr 24, 2001 at 11:48:09AM +0700, Kittiwat Manosuthi wrote:
> Anybody know how to delay failed authentication attempts to prevent
> brute force pwd cracking on POP3 server using qmail & vpopmail?
IMHO not out of the box.
But you surely could construct something in checkpassword that uses
a (process independent) ip related counter and just as you use POP after SMTP
to enable relaying you could add
<ip>:deny
lines to your tcpserver control file.
\Maex
--
SpaceNet AG | Joseph-Dollinger-Bogen 14 | Fon: +49 (89) 32356-0
Research & Development | D-80807 Muenchen | Fax: +49 (89) 32356-299
Stress is when you wake up screaming and you realize you haven't fallen
asleep yet.
