Configure fail2ban jails to prevent dumb brute-force attacks against postfix, dovecot and ssh. See #319

2026-03-22 18:47:23 +01:00 · 2015-03-08 01:13:55 +01:00
parent e2fa01e0cf
commit c443524ee2
3 changed files with 64 additions and 0 deletions
--- a/conf/fail2ban/jail.local
+++ b/conf/fail2ban/jail.local
@@ -0,0 +1,34 @@
+# Fail2Ban configuration file.
+# For Mail-in-a-Box
+[DEFAULT]
+
+# bantime in seconds
+bantime  = 60
+
+# This should ban dumb brute-force attacks, not oblivious users.
+findtime = 30
+maxretry = 20
+
+#
+# JAILS
+#
+
+[ssh]
+
+enabled  = true
+logpath  = /var/log/auth.log
+maxretry = 20
+
+[ssh-ddos]
+
+enabled  = true
+maxretry = 20
+
+[sasl]
+
+enabled  = true
+
+[dovecot]
+
+enabled = true
+filter  = dovecotimap