[Exim] authenticators: how to prevent an unlimited number of…

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
M 
MPhilip Hazel at ->
Delete this message
Reply to this message
Author: Ralf Hauser
Date:  
To: exim-users
Old-Topics: Re: [Exim] main option "hosts_require_tls" unknown ?
Subject: [Exim] authenticators: how to prevent an unlimited number of password tries thru smtp?
Hi,

When using for example a mysql query with salted/crypted password for
authentication when receiving mail via smtp (see
http://bugs.mysql.com/?id=784), how can I prevent an attacker to have
unlimited number of tries at guessing and verifying the password via exim?

Is there a way that exim could limit for example to 3 wrong passwords per
hour?

Many thanks for any hints in advance!

Ralf



This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-RE: [Exim] Maildirsize files: opinions sought[Exim] exim + clamav + amavis->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)