Seeing these things in my log postfix log file:
Feb 21 10:43:47 d postfix/smtps/smtpd[18263]: warning: hostname
ip-113-92.4vendeta.com does not resolve to address 78.128.113.92
Feb 21 10:43:47 x postfix/smtps/smtpd[18263]: connect from
unknown[78.128.113.92]
Feb 21 10:43:47 x postfix/smtps/smtpd[18263]: lost connection after
UNKNOWN from unknown[78.128.113.92]
Feb 21 10:43:47 x postfix/smtps/smtpd[18263]: disconnect from
unknown[78.128.113.92]
Instances where something is connecting but not failing auth and
instead hanging up, but over and over again, wasting system resources.
Does anybody have a jail to monitor and block this stuff? Or is it
ill-advised? Can this catch false positives?
_______________________________________________
Fail2ban-users mailing list
Fail2ban-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
