You might be interested on using https://github.com/PowerDNS/weakforced which
is intended for deterring brute force attacks on clustered setups.
Logging auth attemps with auth policy API requires you run some web service
that will perform the logging.
Aki
> On June 12, 2017 at 5:58 PM "j.emerl
I need to save that to database because I have more then one mail server
and them must share each other failed login attempts information.
I'll try check how Dovecot Authentication Policy works.
--JAcek
2017-06-12 16:50 GMT+02:00 Leonardo Rodrigues :
> Em 12/06/17 09:39, j.emerlik escreveu:
>
>>
Em 12/06/17 09:39, j.emerlik escreveu:
Failed login attempts information may be useful in the
fight with bruteforce attacks.
fail2ban is your friend, it can analyze the logs, no need for
saving that on database.
--
Atenciosamente / Sincerily,
Leonardo Rodrigues
>> On June 12, 2017 at 3:39 PM "j.emerlik" wrote:
>> We alse have same problem, now we are running Dovecot 2.2.30.2 and also use
>> Dovecot SASL for SMTP authentication (postfix 2.11).
>> We need to save all failed login attempts to database as source IP address,
>> username and date and time b
> On June 12, 2017 at 3:39 PM "j.emerlik" wrote:
>
>
> We alse have same problem, now we are running Dovecot 2.2.30.2 and also use
> Dovecot SASL for SMTP authentication (postfix 2.11).
> We need to save all failed login attempts to database as source IP address,
> username and date and time bu
We alse have same problem, now we are running Dovecot 2.2.30.2 and also use
Dovecot SASL for SMTP authentication (postfix 2.11).
We need to save all failed login attempts to database as source IP address,
username and date and time but post-login script can do this but only after
successful login.
> On January 25, 2017 at 12:24 AM Joseph Tam wrote:
>
>
> On 24.01.2017 00:06, rej ex wrote:
>
> > Because we are building some monitoring application, we will need to
> > record all failed and successful login attempts. We need to record
> > remote IP, entered password in plain text, and if
On 24.01.2017 00:06, rej ex wrote:
Because we are building some monitoring application, we will need to
record all failed and successful login attempts. We need to record
remote IP, entered password in plain text, and if possible whether auth
request is for SMTP or IMAP session.
SMTP? Wouldn
Since 2.2.27 we've had auth policy server support which can do this
properly.
Aki
On 24.01.2017 00:06, rej ex wrote:
> Hi everyone,
>
> We are running Dovecot 2.2.9 as a primary IMAP server. Also we use Dovecot
> SASL for SMTP authentication.
>
> Because we are building some monitoring applicat
