Re: [exim] Stopping Bruteforceattacks

Pàgina inicial
Delete this message
Reply to this message
Autor: Mihamina Rakotomandimby
Data:  
A: exim-users
Assumpte: Re: [exim] Stopping Bruteforceattacks
On 07/25/2012 11:36 AM, Cyborg wrote:

> Not that i can't write a perl script checking the logs for it, but an
> inbuild solution would be great.


An inbuild solution would, anyway, trigger Exim and at least at the very
beginning of your experimentation, you'll have to log your rejects.

You'll then have a huge log anyway.

Depending on your choice:
- filter at IP level
- filter at application level
you'll have (I guess) several solution.

If me, I'd filter at IP level, based on some reject log information.
That's the job of fail2ban, but I dont know if it parses Exim logs.

--
RMA.