Date: Tue, 20 Jan 2015 16:46:21 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 196943] security/sshguard does not detect bad logins to Cyrus IMAP over TLS Message-ID: <bug-196943-13@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=196943 Bug ID: 196943 Summary: security/sshguard does not detect bad logins to Cyrus IMAP over TLS Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: feld@FreeBSD.org Reporter: jakob.alvermark@bsdlabs.com Flags: maintainer-feedback?(feld@FreeBSD.org) Assignee: feld@FreeBSD.org Created attachment 151913 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=151913&action=edit patch-src-parser-attack_scanner It seems it only triggers on plaintext logins. Example when in plaintext: Jan 20 11:00:09 hostname imap[XXXX] badlogin: badhost.baddomain.com [6.6.6.0] plaintext username SASL(-13): authentication failure: checkpass failed Example when on TLS: Jan 20 11:01:33 hostname imaps[XXXX] badlogin: badhost.baddomain.com [6.6.6.0] PLAIN [SASL(-13): authentication failure: Password verification failed] Patch submitted upstream, but since they seem slow to adopt patches, I might submit here as well. --- Comment #1 from Bugzilla Automation <bugzilla@FreeBSD.org> --- Auto-assigned to maintainer feld@FreeBSD.org -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-196943-13>