Bonjour Dominique, and thanks for your comments! Il 28/12/2021 17:23, Dominique Rousseau via mailop ha scritto:
With the mentioned plugin & patch, client IPs are always forwarded to dovecot, so I believe we're clear on this front (IMAP login attempts).Le Tue, Dec 28, 2021 at 04:55:57PM +0100, Nicolas JEAN via mailop [mailop@mailop.org] a écrit: (...)My conclusion is that today, there's no technical way to forward client IPs from roundcube to dovecot/postfix.You mean... without patching ? ( you pointed to an issue on roundcube github which add the proxy of orignal IP )
Which left me thinking: what about SMTP login attempts? (forwarded from roundcube to postfix) Hence this question <https://github.com/roundcube/roundcubemail/issues/5334#issuecomment-1001530775> on the roundcube's git.
But yes, my feeling is that we're getting closer to that technical solution. ;)
As for limiting bruteforce attacks ( I believe that's one of the aims ), you could also use somehting like this fail2ban plugin : https://github.com/mattrude/rc-plugin-fail2ban
True, stumbled upon that one while researching, surely a nice to have!I'm also looking for ways to detect and block other kinds of attacks, for example with dovecot auth policy.
Nico
OpenPGP_0x23459069119D37B6.asc
Description: OpenPGP public key
OpenPGP_signature
Description: OpenPGP digital signature
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
