[BlueOnyx:12883] Re: Renaming user accounts
Senthil Ramasamy
samy at maxi.net.au
Wed Apr 17 20:59:58 -05 2013
Chris,
How do you get around to exclude "localhost" in the HOST RULE?
We use Roundcube, In the Roundcube settings we use pop3 host to be
localhost, when the lock out threshold hits, localhost is blocked. Which
then blocks all logins through roundcube.
As a workaround we have been using USER RULE but we love to use the HOST
RULE.....Any suggestion?
Regards,
Samy
-----Original Message-----
From: blueonyx-bounces at mail.blueonyx.it
[mailto:blueonyx-bounces at mail.blueonyx.it] On Behalf Of Chris Gebhardt -
VIRTBIZ Internet
Sent: Wednesday, 17 April 2013 11:34 PM
To: BlueOnyx General Mailing List
Subject: [BlueOnyx:12873] Re: Renaming user accounts
On 4/17/2013 8:27 AM, Eric Peabody wrote:
> Chris,
>
> You are right that pam_abl will help prevent the attacker from
> successfully guessing the password. But the problem is that pam_abl
> locks the accounts when the attacks are running, preventing the
> legitimate users from accessing their accounts. Changing the user name
> associated with the email address has significantly reduced the
> unauthorized activity's interference with legitimate operations.
In the BlueOnyx GUI, make sure that in Server Management > Security > Login
Manager you are only using the HOST RULE and not the USER RULE.
That way, only offending IP addresses will be blocked, not a username.
--
Chris Gebhardt
VIRTBIZ Internet Services
Access, Web Hosting, Colocation, Dedicated www.virtbiz.com | toll-free (866)
4 VIRTBIZ _______________________________________________
Blueonyx mailing list
Blueonyx at mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx
More information about the Blueonyx
mailing list