In reviewing logs, there is an absolute incessant attempt to hack into email accounts; brute force attacks trying any and all email addresses and passwords, RSETS, etc.
Is there any way to prevent this, such as
o When an IP address makes more that so many failed attempts at logging in, etc. that the address is automatically blocked?
o Blocking based on country of origin, or, blocking everything except a specific country/countries?
o Basing these decisions through service?
There has to be a better way; these lackwits just don't give up and I am tired of reviewing logs all the time.
Thanks for the input...
Incessant Hacking Attempts
-
- Site Admin
- Posts: 9738
- Joined: Mon Mar 22, 2004 4:44 am
- Location: Melbourne, Victoria, Australia
Re: Incessant Hacking Attempts
Hi,
While Mail Enable does provide an option to automatically block an IP address after 10 failed attempts, it will only ban the IP for 1 hour (no way to change). The option is the "Abuse detection and prevention option located under the "Localhost" properties under the policies tab.In order to stop the connection from even hitting the Mail Enable server you would probably need to look into a dedicated firewall/spam gateway.
While Mail Enable does provide an option to automatically block an IP address after 10 failed attempts, it will only ban the IP for 1 hour (no way to change). The option is the "Abuse detection and prevention option located under the "Localhost" properties under the policies tab.In order to stop the connection from even hitting the Mail Enable server you would probably need to look into a dedicated firewall/spam gateway.
Regards,
Ian Margarone
MailEnable Support
Ian Margarone
MailEnable Support