> Using SQM on an 1100+ user site and everybody's very happy , Thanks! > > SQM 1.4.3a > Courier IMAP 3.0.6 > Users in Openldap 2.2.17, passwords generated with apg at "standard" > settings, users may not change their own passwords. A typical password > would look like "ErEld7Od". Users log in with their uid and password. > > The site's mainly a backup for standard IMAPS/IMAP TLS MUAs using Evo, > Thunderbird, Outlook Express, whatever. > > The site's on the Internet and in theory it should be safe enough, but > is there any way I can restrict dictionary attacks by limiting the > number of login attempts, similar the the PAM pam_tally module or > Postfix smtpd_mumble_error_limit? I've looked at the plugins, searched > the archives back to July last, but haven't found anything relevant.
You could let Apache do it for you if you use this plugin: http://www.squirrelmail.org/plugin_view.php?id=155 This plugin is old and out of date, but was designed to do what you want using a MySQL database to back it up. It probably needs a lot of work before putting it to use.... http://squirrelmail.org/plugins/lock_down_2.1.tar.gz ------------------------------------------------------- This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170 Project Admins to receive an Apple iPod Mini FREE for your judgement on who ports your project to Linux PPC the best. Sponsored by IBM. Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php -- squirrelmail-users mailing list Posting Guidelines: http://squirrelmail.org/wiki/wiki.php?MailingListPostingGuidelines List Address: [EMAIL PROTECTED] List Archives: http://news.gmane.org/thread.php?group=gmane.mail.squirrelmail.user List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
