IPv4/v6 based access checking and logging

Lefteris Tsintjelis lefty at spes.gr
Fri Nov 12 18:30:19 UTC 2021


I don't suppose there is a handler already for this one? Yes, that would 
have been the best to also add a warning system in case of unauthorized 
IP access.

On 12/11/2021 20:00, Sebastian Nielsen wrote:
> If yore gonna check for IP, you should do it in pre-login so you can 
> reject the username/password combo if the registred IP of account does 
> not match.
> 
> But guess its better to write a custom login handler for that, that also 
> checks user's ip against database, in addition to username/password, and 
> tells client username/password is wrong if IP is unauth..
> 
> -------- Originalmeddelande --------
> Från: Lefteris Tsintjelis <lefty at spes.gr>
> Datum: 2021-11-12 18:48 (GMT+01:00)
> Till: dovecot at dovecot.org
> Ämne: IPv4/v6 based access checking and logging
> 
> Hi,
> 
> I am currently using postfix/dovecot with postfix admin and I track the
> last login date already by using this:
> 
> https://doc.dovecot.org/configuration_manual/lastlogin_plugin/
> 
> Besides last login date, I would like to also implement IPv4 and IPv6
> last login tracking also and if possible, IP based login checking. Is
> post-login scripting the best most efficient way to go?
> 
> Regards,
> 
> Lefteris



More information about the dovecot mailing list