On Sat, Apr 9, 2022 at 5:17 PM Jeremy Harris via Exim-users
wrote:
> Check the documentation for 4.94 for each of those types against
> 4.95 (and, possibly, against the current git master).
> Chapter 10 is a good place to start.
Thanks for the help Jeremy,
After adding ret=key to the lsearch
> How to catch brute foce smtp auth attempts only? (== bad login or
> password provided)
https://github.com/Exim/exim/wiki/BlockCracking
> Condition like:
>
> ${if eq{$authentication_failed}{1}}
>
> doesn't work because it also catches cases where client cancelled smtp
> auth attempt (rfc2554
On 12/04/2022 08:24, Arkadiusz Miśkiewicz via Exim-users wrote:
How to catch brute foce smtp auth attempts only? (== bad login or
password provided)
Ideas?
server_condition = ${acl {auth_check} {$auth2}{$auth3}}
--
Cheers,
Jeremy
--
## List details at
Hello.
How to catch brute foce smtp auth attempts only? (== bad login or
password provided)
Condition like:
${if eq{$authentication_failed}{1}}
doesn't work because it also catches cases where client cancelled smtp
auth attempt (rfc2554 and "*").
Exim internally sees difference:
535
