Re: [exim] ACL block incorrect authentication data

Top Page
This message is part of the following thread:
M+\the complete thread tree sorted by date
MMMEmanuel Gonzalez at <-
.MOlaf Hopp at ->
Delete this message
Reply to this message
Author: kuncho pencho
Date:  
To: exim-users
Subject: Re: [exim] ACL block incorrect authentication data
Hi,

See this.
https://github.com/Exim/exim/wiki/BlockCracking
Best Regards.








>-------- Оригинално писмо --------

>От: Emanuel Gonzalez emanuel_gonzalez@???

>Относно: [exim] ACL block incorrect authentication data

>До: "exim-users@???"

>Изпратено на: 29.11.2017 15:23


Hello.!!





I use fail2ban with iptables to block the brute-force attack, but on some virtual servers I do not use iptables.



2017-11-29 09:40:56 fixed_login authenticator failed for (shkhHHO7Wf) [220.164.38.211]: 535 Incorrect authentication data (set_id=zu)

2017-11-29 09:41:11 fixed_login authenticator failed for (7ouBtZ1fzi) [220.164.38.211]: 535 Incorrect authentication data (set_id=zu)

2017-11-29 09:41:29 fixed_login authenticator failed for (ADM-TRIANON) [200.9.221.213]: 535 Incorrect authentication data (set_id=info@???)

2017-11-29 09:42:25 fixed_login authenticator failed for (ADMIN) [52.175.18.205]: 535 Incorrect authentication data (set_id=info@???)



Is it possible to block these attacks through some rule from exim?



--

## List details at https://lists.exim.org/mailman/listinfo/exim-users

## Exim details at http://www.exim.org/

## Please use the Wiki with this list - http://wiki.exim.org/

This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] ACL block incorrect authentication dataRe: [exim] Again nested LDAP queries...->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)