I’ve been using F2B for over 4-5 years and it’s fantastic. F2B is
just one of many very useful tools in the belt of any knowledgable
infosec practitioner. To consider F2B as “only for the lazy” speaks
more to a lack of truly understanding infosec than it does of the tool
itself…
- - -
On 25 Apr 2022, at 0:07, Laura Smith wrote:
------- Original Message -------
On Monday, April 25th, 2022 at 05:26, ミユナ <al...@coakmail.com>
wrote:
do you know how to stop passwords from being brute-forced for a
mailserver? do you have any practical guide?
Simple. You've got two options:
a) Use strong passwords (and if you run an automated password changing
system, enforce strong passwords)
b) Use client-certificate authentication
Stuff like fail2ban is for the lazy. You should be focusing on solving
the underlying cause of the problem, i.e. using one of the two options
above.
The problem with stuff like fail2ban is that you are basically playing
whack-a-mole. IP address blocking simply does not work 2022,
attackers have too many options (i.e. they can hop between cloud
providers, they can use IPv6 to give them massive ranges to play with
etc. etc.).
