Re: [exim] catching brute foce smtp auth - what condition?

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Lena
Datum:  
To: exim-users
Betreff: Re: [exim] catching brute foce smtp auth - what condition?
> How to catch brute foce smtp auth attempts only? (== bad login or
> password provided)


https://github.com/Exim/exim/wiki/BlockCracking

> Condition like:
>
> ${if eq{$authentication_failed}{1}}
>
> doesn't work because it also catches cases where client cancelled smtp
> auth attempt (rfc2554 and "*").


Doesn't happen in real life.