action based on IMAP ID fields
Hello,
is it possible based on the information we get from the IMAP ID fields sent by a client to start some actions e.g. reject an IMAP client with a certain OS version?
-- Kind Regards Jörg Backschues
On 21/10/2021 22:26 Jörg Backschues <joerg@backschues.de> wrote:
Hello,
is it possible based on the information we get from the IMAP ID fields sent by a client to start some actions e.g. reject an IMAP client with a certain OS version?
-- Kind Regards Jörg Backschues
Hi!
Dovecot auth policy feature allows you to inspect IMAP ID fields, if they are sent pre-login. You can use something like weakforced for this.
See https://doc.dovecot.org/configuration_manual/authentication/auth_policy/#aut...
Aki
On 2021-10-21 12:26 p.m., Jörg Backschues wrote:
Hello,
is it possible based on the information we get from the IMAP ID fields sent by a client to start some actions e.g. reject an IMAP client with a certain OS version?
You might like to look at CLIENTID, it's design allows for that. But if you are looking at just OS, p0f is your friend. We use it not only to identify the connection in dovecot, but as a threat indicator as well.
You can reach out off list, and I can send you a few pointers..
-- "Catch the Magic of Linux..."
Michael Peddemors, President/CEO LinuxMagic Inc. Visit us at http://www.linuxmagic.com @linuxmagic A Wizard IT Company - For More Info http://www.wizard.ca "LinuxMagic" a Registered TradeMark of Wizard Tower TechnoServices Ltd.
604-682-0300 Beautiful British Columbia, Canada
This email and any electronic data contained are confidential and intended solely for the use of the individual or entity to which they are addressed. Please note that any views or opinions presented in this email are solely those of the author and are not intended to represent those of the company.
participants (3)
-
Aki Tuomi
-
Jörg Backschues
-
Michael Peddemors