On Wed, Aug 26, 2020 at 09:59:34PM +0200, Jaroslaw Rafa wrote:
> Dnia 27.08.2020 o godz. 07:53:05 Peter pisze:
> >
> > You can go a level up without having to involve Postfix and it's not
> > so expensive. many syslog daemons allow you to match certain lines
> > and do a call out to a shell function exactly the way you're asking.
> > for example, rsyslog has a "Shell execute" action that does exactly
> > this which, when used in combination with an expression-based filter
> > can do call outs on exact events.
>
> Or just use fail2ban.
Yes, but the whole point is that fail2ban is rather a hack, and NetBSD
actually has a decent framework for integrating application events
directly with the system firewall.
The framework is sound and its actions are more reliable/timely, but
integrating into into Postfix as an ad-hoc hook is not particularly
appealing. A more general approach would be best, so Postfix does
not become a pile of special-case hacks.
--
Viktor.
