>> Anyways... yes, I think that stopping "harvest" attacks is a good >> thing; looking at my logs, it seems that there are a bunch of bots >> out there trying to bruteforce credentials > Harvesting attacks (smtp_verify or mail_from queries) are not > the same thing as brute force attacks (auth attempts).
Yeah sorry, wrong term but the above was the meaning (bruteforce credentials through repeated logon attempts) > But yes, absolutely, brute force attacks should be stopped > (i use fail2ban for that, works for all services, not just smtp)... That's fine... and a lot of mailservers have built-in protection against such an issue, but, as I wrote, if you put ASSP in front of the mailserver, it won't see the attacker IP so it won't be able to use such a mechanism, worse, enabling it on the backend mailserver would cause the ASSP to get banned so, having such a mechanism built straight into ASSP will help better protecting the mailserver ... then, by the way there are POP3, FTP and others, but let's stay on topic and deal with SMTP here :) ------------------------------------------------------------------------------ This SF.net Dev2Dev email is sponsored by: Show off your parallel programming skills. Enter the Intel(R) Threading Challenge 2010. http://p.sf.net/sfu/intel-thread-sfd _______________________________________________ Assp-test mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-test
