On 14 May 2019, at 13:15, @lbutlr wrote:
> On 14 May 2019, at 11:41, @lbutlr wrote:
>> Has anyone implemented geo based restrictions for postfix login connections,
>> or is this something that needs to be done in dovecot?
>
> This seemed to work pretty well
>
> pfctl -t badguys -T add $(cat
On 14 May 2019, at 11:41, @lbutlr wrote:
> Has anyone implemented geo based restrictions for postfix login connections,
> or is this something that needs to be done in dovecot?
This seemed to work pretty well
pfctl -t badguys -T add $(cat block.zone)
I can then flush and add when the CIDR
> On 14 May 2019, at 11:48, John Peach wrote:
>
> On 5/14/19 1:41 PM, @lbutlr wrote:
>> Has anyone implemented geo based restrictions for postfix login connections,
>> or is this something that needs to be done in dovecot?
>> I was thinking someway to add most of Asia and Eastern Europe to
@lbutlr:
> Has anyone implemented geo based restrictions for postfix login =
> connections, or is this something that needs to be done in dovecot?
Accodring to a search engine, with seach terms "postfix geoip", there
are many solutions. One uses postfwd with a geoip plugin to block
SASL login
http://www.ipdeny.com publish IP address-lists sorted by country zones; a script
can quite easily derive a .cidr access-list (or perhaps a DNS zone file).
Alternatively, there is an RBL, zz.countries.nerd.dk, which will return a code
based on country of origin - or if you substitute a country
On 5/14/19 1:41 PM, @lbutlr wrote:
Has anyone implemented geo based restrictions for postfix login connections, or
is this something that needs to be done in dovecot?
I was thinking someway to add most of Asia and Eastern Europe to postscreen
checks would be useful?
You can always use
Has anyone implemented geo based restrictions for postfix login connections, or
is this something that needs to be done in dovecot?
I was thinking someway to add most of Asia and Eastern Europe to postscreen
checks would be useful?
--
"One of the great tragedies of life is the murder of a