Force TCP socket disconnect on imap login failure?
Thomas Zajic
zlatko-dovecot at zlatk0.net
Tue May 24 05:59:56 UTC 2022
* Hippo Man, 23.05.22 22:54
> [...] However, this does not drop connections that are existing and
> already open. It will only drop *future* connections from that IP
> address to port 143.
>
> This is why I want to kill the existing connection. Even after that
> "iptables" command is issued, the entity which is connected to the
> imap port can continue to send more and more imap commands. [...]
If your version of 'ss' is recent anough, you can use 'ss -k' to
instantly kill an open connection. Other tools you could try are
'killcx' and 'tcpkill' (part of the 'dsniff' toolkit):
http://killcx.sourceforge.net/
https://www.monkey.org/~dugsong/dsniff/
HTH
Thomas
More information about the dovecot
mailing list