24 May
2022
24 May
'22
8:59 a.m.
- Hippo Man, 23.05.22 22:54
[...] However, this does not drop connections that are existing and already open. It will only drop *future* connections from that IP address to port 143.
This is why I want to kill the existing connection. Even after that "iptables" command is issued, the entity which is connected to the imap port can continue to send more and more imap commands. [...] If your version of 'ss' is recent anough, you can use 'ss -k' to instantly kill an open connection. Other tools you could try are 'killcx' and 'tcpkill' (part of the 'dsniff' toolkit):
http://killcx.sourceforge.net/ https://www.monkey.org/~dugsong/dsniff/
HTH Thomas