Recommendations on intrusion prevention/detection?
Johannes Rohr
johannes at rohr.org
Wed Apr 22 15:29:49 EEST 2020
Dear all,
what are the key strategies for intrusion prevention and detection with
dovecot, apart from installing fail2ban?
It is a pity that the IMAP protocol does not support 2 factor
authentication, which seems to stop 90% of intrusion attempts in their
tracks. Without it, if someone has obtained your password and reads your
mail without modifying it, you will hardly ever notice.
Is there a reasonable way of detecting and preventing logins from
unusual IP ranges? Or are there other strategies you would recommend?
Cheers,
Johannes
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <https://dovecot.org/pipermail/dovecot/attachments/20200422/567c6148/attachment.sig>
More information about the dovecot
mailing list