On 07.07.21 23:12, Jay Hennigan via mailop wrote: >> Encourage transparent 2FA, and options like country auth restrictions, >> blocking AUTH from cloud providers/hosting companies known for being a >> haven for those types of attacks, (should make a blog post on best >> practices for authentication on email servers one day) but.. > > [snip] > > Fail2ban can be very useful here.
It's running to protect against brute force attacks, but it doesn't help against phished passwords. We also check against the number of different client addresses, since they often use multiple bot hosts - spread all over the world - after the data was phished. But this time it was just one host. Regards Thomas Walter -- Thomas Walter Datenverarbeitungszentrale FH Münster University of Applied Sciences Corrensstr. 25, Raum B 112 48149 Münster Tel: +49 251 83-64908 Fax: +49 251 83-64910 E-Mail: b...@fh-muenster.de https://www.fh-muenster.de/dvz/
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
