20 Dec
2011
20 Dec
'11
12:59 p.m.
On Tue, 2011-12-13 at 09:39 -0200, Leonardo Rodrigues wrote:
I'm strugling to find some documentation on dovecot's anvil serviceand/or its penalties (that can be checked with doveadm penalty) ... but i'm not finding anything on that.
is there any documentation on anvil/penalties that i should checkother than a few messages on the mailing list archive ?
Nope. Basically:
- Each failed attempt doubles the penalty for next login attempt from that specific IP
- Penalty is maxed out at 30 seconds
- Each successful login (after waiting for penalty) will clear the penalty for that IP
- You can disable the penalty entirely with: service anvil { unix_listener anvil-auth-penalty { mode = 0 } }
I don't really like this penalty stuff. Maybe it's better than nothing, maybe not. Maybe there's a better way to do it. Not very useful for IPv6.