[Dovecot] Limit login attempts per connection?
Marcus Rueckert
darix at opensu.se
Wed Mar 10 14:09:45 EET 2010
On 2010-03-09 21:07:42 -0800, Terry Barnum wrote:
> > On Fri, 05.03.2010 at 09:44:35 +0000, Ed W <lists at wildgooses.com> wrote:
> >> I would be all in favour of a setting like this because it's easier
> >> to configure than fail2ban...
>
> There's also denyhosts. <http://denyhosts.sourceforge.net/>
http://snowman.net/projects/ipt_recent/
for ssh i use:
iptables -A input_ext -p tcp --dport 22 -m recent --update --seconds 60 --hitcount 4 --rttl --name SSH -j LOG --log-prefix "SSH_brute_force attack "
iptables -A input_ext -p tcp --dport 22 -m recent --update --seconds 60 --hitcount 4 --rttl --name SSH -j DROP
iptables -A input_ext -p tcp --dport 22 -m state --state NEW -m recent --set --name SSH -j ACCEPT
really nice iptables module
darix
--
openSUSE - SUSE Linux is my linux
openSUSE is good for you
www.opensuse.org
More information about the dovecot
mailing list