On Sun, 3 Nov 2019, Phil Stracchino wrote:
On 2019-11-03 05:24, Allen Coates wrote:
On 03/11/2019 02:42, Wietse Venema wrote:
John Schmerold:
What is the best way to protect against dictionary attacks in Postfix?
Reportedly, fail2ban (no first-hand experience, because I have no
SASL clients).
Wietse
I run a home-brewed fail2ban look-alike; I find it almost as useful as
postscreen.
I've been thinking about setting up exactly such a thing myself. Trying
to figure out how to make fail2ban talk to a Shorewall firewall on a
different box is just too much of a pain for such a fundamentally simple
task. It's like trying to set up a CNC mill when all you actually want
to do is file 2mm off a strike plate.
If you can do it locally, you can do it remotely (via ssh), like:
ssh remote-box whatever_local_shorewall_command
with fail2ban it's very easy to add customized actions for block/unblock.
