Re: [exim] Stopping Bruteforceattacks

Top Page
This message is part of the following thread:
M---+--++\the complete thread tree sorted by date
M--\M-\MMMChris Russell at <-
M+\MM\MMAndrew Colin Kissa at ->
Delete this message
Reply to this message
Author: Mihamina Rakotomandimby
Date:  
To: exim-users
Subject: Re: [exim] Stopping Bruteforceattacks
On 07/25/2012 11:36 AM, Cyborg wrote:

> Not that i can't write a perl script checking the logs for it, but an
> inbuild solution would be great.

An inbuild solution would, anyway, trigger Exim and at least at the very
beginning of your experimentation, you'll have to log your rejects.

You'll then have a huge log anyway.

Depending on your choice:
- filter at IP level
- filter at application level
you'll have (I guess) several solution.

If me, I'd filter at IP level, based on some reject log information.
That's the job of fail2ban, but I dont know if it parses Exim logs.

--
RMA.



This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] Stopping BruteforceattacksRe: [exim] Stopping Bruteforceattacks->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)