Scott Neville writes:
I am trying to use the logs to show the IP that brute force activity
comes from, but Im not succeeding. I have read the archives and seen
the advice others have had. I can see logs for repeated bad logins,
but I need the IP address from the attempts.
...
but only for su
On 10/1/2012 3:36 PM, Scott Neville wrote:
In /var/log/maillog I get lines like this:
Oct 1 04:19:12 olive dovecot: auth: pam(marketing): unknown user
Oct 1 04:19:17 olive dovecot: auth: pam(marketing): unknown user
I'm guessing you are using a centos package. This may be package version
s
Hi,
I am trying to use the logs to show the IP that brute force activity comes
from, but Im not succeeding. I have read the archives and seen the advice
others have had. I can see logs for repeated bad logins, but I need the IP
address from the attempts.
dovecot 2.0.12 / CentOS 5.4 / imaps on
