From owner-freebsd-questions@FreeBSD.ORG Tue Jun 4 06:10:23 2013 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id B4C54408 for ; Tue, 4 Jun 2013 06:10:23 +0000 (UTC) (envelope-from Lena@lena.kiev.ua) Received: from lena.kiev.ua (lena.kiev.ua [82.146.52.81]) by mx1.freebsd.org (Postfix) with ESMTP id 81C001D19 for ; Tue, 4 Jun 2013 06:10:23 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lena.kiev.ua; s=3; h=In-Reply-To:Content-Type:Mime-Version:References:Message-ID:Subject:Cc:To:From:Date; bh=TdorGfZQnvby0CIymlTA3W124LuTxh30v4syJsYuEgI=; b=TfFPpLaIibxh7GTipWni0JvxzKWgNVdEp+Qt8Gt1ikI7Iizq4ksoqsl0GoP9/QM8rq7SppEtgY3ewVNurofBMgh83RadZCFbsk3DFwrKOJ6GFZ5YOykWmAohLTfsb2ENztFnr+pXUeDrj4w8HqgS4RpNxibEoDM/+P9XAzpZQWU=; Received: from ip-384c.rusanovka-net.kiev.ua ([94.244.56.76] helo=bedside.lena.kiev.ua) by lena.kiev.ua with esmtpsa (TLSv1.2:DHE-RSA-AES256-GCM-SHA384:256) (Exim 4.80.1 (FreeBSD)) (envelope-from ) id 1UjkRo-000DlN-3T; Tue, 04 Jun 2013 09:10:21 +0300 Received: from bedside.lena.kiev.ua (localhost.lena.kiev.ua [127.0.0.1]) by bedside.lena.kiev.ua (8.14.7/8.14.7) with ESMTP id r546A6OS001281; Tue, 4 Jun 2013 09:10:06 +0300 (EEST) (envelope-from Lena@lena.kiev.ua) Received: (from lena@localhost) by bedside.lena.kiev.ua (8.14.7/8.14.7/Submit) id r546A6MC001280; Tue, 4 Jun 2013 09:10:06 +0300 (EEST) (envelope-from Lena@lena.kiev.ua) Date: Tue, 4 Jun 2013 09:10:05 +0300 From: Lena@lena.kiev.ua To: freebsd-questions@freebsd.org Subject: Re: Stop SMTP attack with pam_abl Message-ID: <20130604061005.GA919@lena.kiev> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <51ACCCBD.5030305@netfence.it> User-Agent: Mutt/1.4.2.3i X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 04 Jun 2013 06:10:23 -0000 > I have different sendmail based servers deployed and all of them are, > more or less frequently, subject to dictionary attacks. > P.S. I'm not sticking with pam_abl if a better solution exists... In Exim this can be done without separate software, just with additions to config: https://github.com/Exim/exim/wiki/BlockCracking (this blocks both using stolen passwords and dictionary attacks).