> Le 11 avr. 2019 à 12:23, Marc Roos via dovecot <dovecot@dovecot.org> a écrit : > > > > Say for instance you have some one trying to constantly access an > account > > > Has any of you made something creative like this: > > * configure that account to allow to login with any password > * link that account to something like /dev/zero that generates infinite > amount of messages > (maybe send an archive of virusses?) > * transferring TB's of data to this harassing client. > > I think it would be interesting to be able to do such a thing. As long as you have infinite bandwidth, that may be fun, but it is not the case for most people operating a mail server I think. For theses clients, I simply have fail2ban and DROP packages of blocked IP (I prefer to DROP because I don't want to waste resources responding that the connection is refused).
Re: Mail account brute force / harassment
Jean-Daniel Dupas via dovecot Fri, 12 Apr 2019 08:06:48 -0700
- Mail account brute force / harassment Marc Roos via dovecot
- Re: Mail account brute force / harass... Joseph Tam via dovecot
- Re: Mail account brute force / harass... Jean-Daniel Dupas via dovecot
- Re: Mail account brute force / harass... Odhiambo Washington via dovecot
- Re: Mail account brute force / ha... Gerald Galster via dovecot
- RE: Mail account brute force / ha... Marc Roos via dovecot
- Re: Mail account brute force ... Gerald Galster via dovecot
- RE: Mail account brute fo... Marc Roos via dovecot
- Re: Mail account brute force ... James via dovecot
- RE: Mail account brute fo... Marc Roos via dovecot
- Re: Mail account bru... James via dovecot
- Re: Mail account brute fo... Anton Dollmaier via dovecot
- Re: Mail account bru... James via dovecot
