> On 14 May 2019, at 11:48, John Peach <john-post...@peachfamily.net> wrote:
>
> On 5/14/19 1:41 PM, @lbutlr wrote:
>> Has anyone implemented geo based restrictions for postfix login connections,
>> or is this something that needs to be done in dovecot?
>> I was thinking someway to add most of Asia and Eastern Europe to postscreen
>> checks would be useful?
>
> You can always use access_client and reject based on TLD. I ban most of the
> new TLDs that are used for nothing but spam and Eastern Europe......
Urd, I already do that for incoming mail via helo restrictions, but I haven't
figured out how to do that effectively for the port 993.
> I use the geo-ip extension to iptables for restricting IMAP access.
I'll look at that, thanks.
On 14 May 2019, at 12:33, Allen Coates <znab...@cidercounty.org.uk> wrote:
> Alternatively, there is an RBL, zz.countries.nerd.dk, which will return a
> code based on country of origin - or if you substitute a country code (eg
> uk.countries.nerd.dk) it will return a yes/no response, to blacklist (or
> whitelist) an individual country. I don't know how robust these people are,
> but they are certainly sufficient for a domestic server.
that also sounds promising.
--
Vampires have risen from the dead, the grave and the crypt, but have
never managed it from the cat. --Witches Abroad
