Cyrus imap and identity theft
Neil Price
nprice at gibb.co.za
Tue Feb 26 06:00:15 EST 2019
On 22/02/2019 08:41 PM, Stéphane Branchoux wrote:
>
> Each week , few users respond to phishing mails.
> I use rules on firewalls, DNS filters, training program for users ,
> anti spam products , anti virus ….
>
> I am looking for a way or tools to reduce identity theft on my Cyrus
> imap server.
> For example , scripts to geo localise ip requests , detect and reject
> bad connexions ?
> Is it possible to authorize few devices for a user and reject other
> devices ?
>
> Which tools do you use on your Cyrus imap servers to protect them ?
>
>
fail2ban and fail2ban-repeater
https://stuffphilwrites.com/2013/03/permanently-ban-repeat-offenders-fail2ban/
ipset-blacklist https://github.com/trick77/ipset-blacklist (great for
banning whole countries)
password policies
Plus the usual: SPF, clam, spamassassin, greylisting, etc
Spam check outgoing mail too.
More information about the Info-cyrus
mailing list