LinuxQuestions.org - How can I stop Pop3 Brute Force attacks

- Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)

- - How can I stop Pop3 Brute Force attacks (https://www.linuxquestions.org/questions/linux-newbie-8/how-can-i-stop-pop3-brute-force-attacks-872086/)

amuhamed

03-31-2011 03:38 AM

How can I stop Pop3 Brute Force attacks

Hello people,

I'm pretty new with Linux, and have a mail server running RHEL, with postfix, dovecot, etc.

I installed Fail2ban and this works wonders against SSH brute force attacks. It'll ban an IP address for a period of time if it unsuccessfully attempts to log on 3 times within, say a minute.

I was wondering if it can be as effective with pop3 attacks. If it is, how can I get it done?

Thank you.

repo	03-31-2011 03:45 AM

You need to create a regex, and add it to fail2ban
Here is a guide.
http://www.computersolutions.cn/blog...pmail-attacks/

Kind regards

All times are GMT -5. The time now is 01:19 AM.