[Dovecot] No tcp wrappers, other ideas to help stop brute force attacks?

David Rees drees76 at gmail.com
Wed Aug 30 22:54:15 EEST 2006


On 8/30/06, John Peacock <jpeacock at rowman.com> wrote:
> David Rees wrote:
> > I'm looking for a way to deny access to dovecot from certain IP
> > addresses, basically to help prevent brute force attacks on the
> > server.
>
> IMNSHO, this is a funtion of your firewall; it's not really dovecot's
> business.  Look at some of the freeware IDS systems out there, which
> will monitor system logs and adjust firewall rules on the fly...

Got any suggestions on an IDS which may be suitable? Can't really be
part of the firewall as the firewall in this case is a separate system
and doesn't have the capability to detect failed dovecot logins,
especially if they are using SSL.

-Dave


More information about the dovecot mailing list