LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 06-28-2014, 10:42 AM   #1
Cidi Rome
LQ Newbie
 
Registered: Dec 2005
Posts: 17

Rep: Reputation: 0
Exclamation Configure qmail and Courier-IMAP to log incorrect passwords


Hi.

Does any of you know if it is possible to configure qmail and Courier-IMAP to log the incorrect passwords that are tried.

I'm referring to the password itself, not the fact that an incorrect password has been tried.

Best Regards.

Last edited by Cidi Rome; 06-28-2014 at 01:12 PM.
 
Old 06-28-2014, 12:38 PM   #2
bathory
LQ Guru
 
Registered: Jun 2004
Location: Piraeus
Distribution: Slackware
Posts: 13,189
Blog Entries: 1

Rep: Reputation: 2050Reputation: 2050Reputation: 2050Reputation: 2050Reputation: 2050Reputation: 2050Reputation: 2050Reputation: 2050Reputation: 2050Reputation: 2050Reputation: 2050
Quote:
Originally Posted by Cidi Rome View Post
Hi.

Does any of you know if it is possible to configure qmail and Courier-IMAP to log the incorrect passwords that are tried.

I'm referring to the password itself, not the fact that an incorrect password has me tried.

Best Regards.
If you're using authlib, you can set
Code:
DEBUG_LOGIN=2
in authdaemonrc. Read the info included in that file to see what modifications (if any) you have to do in /etc/rsyslogd.conf in order use the debug level in logs.

Regards
 
1 members found this post helpful.
Old 06-28-2014, 01:07 PM   #3
Cidi Rome
LQ Newbie
 
Registered: Dec 2005
Posts: 17

Original Poster
Rep: Reputation: 0
I'm using syslog-ng but I would think this king a configuration would be made in the server itself not the logging system...

I guess I was wrong...

Thank you for your reply, I will analyse.

Update:
I managed to find what I wanted, but I can see all the passwords, I would be nice to only check the wrong ones.
/etc/courier-imap/authlib/authdaemonrc

I gess I will only activate de DEBUG LEVEL 2 when I see brute force attacks and want to investigate.

Once again, thank you

Last edited by Cidi Rome; 06-28-2014 at 01:21 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
configuration of courier-imap for qmail ram_rajavarapu Linux - Enterprise 1 11-26-2010 03:03 AM
Courier IMAP with MD5 Passwords and MySQL (CentOS 5.3) Guardian-Mage Linux - Server 0 04-20-2009 05:52 PM
Secure storage of passwords for Postfix and Courier IMAP wbuik Linux - Security 2 10-02-2006 10:29 AM
qmail-ldap + courier-imap woes (imap capability) syahid Linux - General 1 10-12-2005 12:03 AM
courier imap, shadow passwords and mail directorys andzerger Linux - Networking 0 03-09-2004 09:31 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 02:54 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration