Re: qpopper brute force attack

To: "Debian Isp" <debian-isp@lists.debian.org>
Subject: Re: qpopper brute force attack
From: "Germán Gutiérrez" <germang@gmail.com>
Date: Tue, 24 Apr 2007 10:47:49 -0300
Message-id: <f13e24520704240647p76d42714q31991d8aaabb96de@mail.gmail.com>
In-reply-to: <462C8B07.4070906@pangea.org>
References: <462C8B07.4070906@pangea.org>

Besides the soft you run on the server, I'd recommend using fail2ban, it's really useful with that kind of attacks, you should take a look at it.

--
Saludos,
Germán

Paradise is exactly like where you are right now... only much, much better.

On 4/23/07, Carlos Acedo <carlos@pangea.org > wrote:

Hi,

I have received an attack to my pop3 server qpopper leading this to
crash, and every time I woke up it crashed again. Eventually I filtered
the attacker ip with iptables.

The attacker was trying to login with usual names with many attempts per
second (AKA brute force).

After the attack I'm not very confident to qpooper, so is there any good
alternatives to qpopper? what about xmail?

Thank you

Carlos.

--
To UNSUBSCRIBE, email to debian-isp-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- qpopper brute force attack
  - From: Carlos Acedo <carlos@pangea.org>

Prev by Date: Re: qpopper brute force attack
Next by Date: Personal Loan
Previous by thread: Re: qpopper brute force attack
Next by thread: Personal Loan
Index(es):
- Date
- Thread