IP drop list
Reindl Harald
h.reindl at thelounge.net
Wed Mar 4 21:29:47 UTC 2015
Am 04.03.2015 um 21:51 schrieb Oliver Welter:
>>>>> Please add this support to iptables instead of Dovecot. It's a
>>>>> waste of
>>>>> effort to code it into every application that listens on the network.
>>>>
>>>> <head explodes>
>>>>
>>>> Would you care to integrate it into IOS on my Cisco as well?
>>>>
>>>> There are things connected to the Internet that aren't PCs running
>>>> Linux, you know. It may be hard to accept, but that's the way it is.
>>>>
>>> I assume your dovecot runs on some kind of *nix
>>
>> Of course. I run it under Solaris.
>>
>>> so there should be some
>>> sort of netfilter available which you can put in front of your listening
>>> ports.
>>
>> There is. But I already have a firewall, running on bulletproof
>> hardware that doesn't depend on spinning disks. I don't want to add
>> ANOTHER firewall when I already have a perfectly good one. Besides, my
>> mail server is built for...serving mail. Not being a firewall.
>>
> Well, from an academic point of view, a network service that denies
> connection on the ip layer is also an ip firewall.
nonsense
a service using RBL's don't reject on IP layer
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://dovecot.org/pipermail/dovecot/attachments/20150304/d111e5da/attachment.sig>
More information about the dovecot
mailing list