22 Sep
2011
22 Sep
'11
5:51 p.m.
Am 22.09.2011 16:42, schrieb dovecot@lists.grepular.com:
On 22/09/11 15:39, Rick Romero wrote:
There are additional 'non-official' ClamAV signatures that are meant to detect phishing attempts. They do work, but aren't perfect.
Got a link? Or are you thinking of the SaneSecurity Signatures?
Yep. The SaneSecurity Sigs.
We do use ClamAV+SaneSecurity on incoming email, but these are *very* targetted phishing attacks, and lots of them manage to get through. The Kochi application that I brought up sits on the *outgoing* mail routers and prevents people sending out their login details once they've been tricked.
yes youre right, after all this isnt really dovecot related wasnt the orginal topic about brute force pop/imap attack ?
Best Regards
MfG Robert Schetterer
Germany/Munich/Bavaria