Hi Wietse,
One benefit of using fail2ban (for me) is a definitely cleaner mail log
for these cases.
Regards,
Istvan
On 12.3.2015 2:30, Wietse Venema wrote:
Michael Fox:
I haven't implemented postscreen yet, but plan to. So this question is for
the postscreen experts here.
As I understand it from the documentation, postscreen protects postfix from
having to deal with most attack vectors, including higher volume attacks.
So, does it make sense to also use something like fail2ban to block IPs that
postscreen (or postfix) logs repeatedly as offenders? Or is postscreen
sufficient to protect posfix?
I would not bother, except in extreme cases where the same IP address
makes thousands and thousands of connections.
Wietse
