Date: Tue, 24 Jan 2023 20:31:03 +0100 From: Juraj Lutter <otis@FreeBSD.org> To: Michael Grimm <trashcan@ellael.org> Cc: freeBSD ports <freebsd-ports@FreeBSD.org> Subject: Re: postfix' blacklistd patch Message-ID: <40BAFF53-D547-4059-AE88-E5E8A5F0EF2B@FreeBSD.org> In-Reply-To: <4EC5136F-0692-460C-85B8-BA3BF5FA728E@ellael.org> References: <4EC5136F-0692-460C-85B8-BA3BF5FA728E@ellael.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> On 16 Jan 2023, at 16:49, Michael Grimm <trashcan@ellael.org> wrote: >=20 > Hi, >=20 > I wonder if the following condition for triggering blacklistd is = appropriate: >=20 >=20 > /* notify blacklistd of SASL authentication failure */ > pfilter_notify(1, vstream_fileno(state->client)); > return (-1); > } >=20 > If I am not mistaken blacklistd will become notified even after a = 'Temporary authentication failure'.=20 >=20 > Has this been intended? Yes, because even an temporary failure could be a result of a =E2=80=9Cbru= te force attack=E2=80=9D. =E2=80=94 Juraj Lutter otis@FreeBSD.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?40BAFF53-D547-4059-AE88-E5E8A5F0EF2B>