also sprach Yaroslav Halchenko <[EMAIL PROTECTED]> [2006.07.12.0449 +0200]:
> May be I got your comment wrong: are you suggesting to block all 5xx
> codes?
Maybe not all. But only 5xx codes, never 4xx ones.
> "Sender address rejected" can be caused by 450 Domain not found...
> should not we use i
> also sprach Yaroslav Halchenko <[EMAIL PROTECTED]>
> [2006.07.11.2133 +0200]:
> > [Postfix] enabled = true
> Please don't enable it by default.
O sure ;-) I just cut pasted what I got from the user, but whenever I
plug it in into shipped configuration it will be more manual process
since I would
also sprach Yaroslav Halchenko <[EMAIL PROTECTED]> [2006.07.11.2133 +0200]:
> [Postfix]
> enabled = true
Please don't enable it by default.
> > Not a bad idea; some thoughts: make sure you include the 5xx in the
> > regexp to ensure that clients that legitimately come back don't get
> > banned.
>
Here is preliminary configuration I've got from another user
(Jeroen Vermeulen) some time ago for postfix:
[Postfix]
enabled = true
logfile = /var/log/mail.info
fwstart =
fwend =
fwcheck =
fwban = /sbin/iptables -I fail2ban-postfix 1 -s -j DROP
fwunban = /sbin/iptables -D fail2ban-postfix -s -j
also sprach Jefferson Cowart <[EMAIL PROTECTED]> [2006.07.10.2148 +0200]:
> Jul 10 12:39:03 P450 postfix/smtpd[17863]: NOQUEUE: reject: RCPT from
> mail.servemail.com.br[201.40.235.2]: 550 <[EMAIL PROTECTED]>:
> Recipient address rejected: User unknown in local recipient table;
> from=<[EMAIL PROTE
Package: fail2ban
Severity: wishlist
I've been having problems with some abusive clients running dictionary
attacks against my mail servers for a few years. It would be nice if
fail2ban had support for postfix and could automatically ban these IPs.
I've included a sample line below:
Jul 10 12:39:
6 matches
Mail list logo
