|
|
On 19 Jan 2012, at 4:48, Urs Grützner wrote:
CGP 5.1.16
That's very old: old enough that running it almost guarantees some security vulnerabilities. I believe that what I say below applies to that version, but it may not...
in the night of Jan 17, 2012 a robot from 88.2.164.178 seemed having scanned during one hour for addresses on our server. Below is only a little exerpt,
Questions:
1. is there a setup to block out an iP when mulitiple, unsuccessful connection trials are performed in a short time period?
In the Web Admin interface see /Master/Settings/BlacklistedIPs.html At the bottom of the page is the "Temporarily Blocked IP Addresses" section. See the CGP Guide (behind the "Help" link) for details.
2. in SMTP Module CGP checks for blacklisted servers. Is there also the same procedure possible for POP or IMAP connection trials?
Temporarily blocked addresses are blocked across all protocols at the application layer: TCP connections are accepted but access is denied via error responses specific to the access protocol. The static blacklist is not checked for IMAP or POP, but the Blacklist page in the Web Admin interface also offers the "Denied IP's" list, which is used at the TCP level, refusing all connections. As with most pages in the Web Admin interface, the "Help" link on that page goes o more info in the CGP Guide.
|
|