[ejabberd] ejabberd Digest, Vol 155, Issue 9

jacob jabber ejabberd.jacob at gmail.com
Sat Jun 18 14:34:41 MSK 2016


I using tcp loadbalancer between clients and chat servers and chat server
detect loadbalancer IPs as attacker. client IPs are not sent to chat
servers.

On Sat, Jun 18, 2016 at 1:30 PM, <ejabberd-request at jabber.ru> wrote:

> Send ejabberd mailing list submissions to
>         ejabberd at jabber.ru
>
> To subscribe or unsubscribe via the World Wide Web, visit
>         http://lists.jabber.ru/mailman/listinfo/ejabberd
> or, via email, send a message with subject or body 'help' to
>         ejabberd-request at jabber.ru
>
> You can reach the person managing the list at
>         ejabberd-owner at jabber.ru
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of ejabberd digest..."
>
>
> Today's Topics:
>
>    1. Prevent brute force attacks on ejabberd server (jacob jabber)
>    2. Re: Prevent brute force attacks on ejabberd server
>       (Evgeny Khramtsov)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Sat, 18 Jun 2016 10:06:14 +0430
> From: jacob jabber <ejabberd.jacob at gmail.com>
> To: ejabberd at jabber.ru
> Subject: [ejabberd] Prevent brute force attacks on ejabberd server
> Message-ID:
>         <
> CAOY1yjDp81RbJ_z2-8_1JoYiSmvxqNLZnUudYOO3LRXnBf_9YA at mail.gmail.com>
> Content-Type: text/plain; charset="utf-8"
>
> Hi. how to prevent brute-force attacks on ejabberd server when
> authentication failures are detected? I want to ban users not IPs.
> mod_fail2ban banned IPs. Is another way to prevent brute force attacks?
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> http://lists.jabber.ru/pipermail/ejabberd/attachments/20160618/27d7e212/attachment-0001.html
> >
>
> ------------------------------
>
> Message: 2
> Date: Sat, 18 Jun 2016 09:48:21 +0300
> From: Evgeny Khramtsov <xramtsov at gmail.com>
> To: ejabberd at jabber.ru
> Subject: Re: [ejabberd] Prevent brute force attacks on ejabberd server
> Message-ID: <20160618094821.59f9451d at zinid.ru>
> Content-Type: text/plain; charset=US-ASCII
>
> Sat, 18 Jun 2016 10:06:14 +0430
> jacob jabber <ejabberd.jacob at gmail.com> wrote:
>
> > Hi. how to prevent brute-force attacks on ejabberd server when
> > authentication failures are detected? I want to ban users not IPs.
> > mod_fail2ban banned IPs. Is another way to prevent brute force
> > attacks?
>
> When authentication fails what else info do you have except IP?
>
>
> ------------------------------
>
> Subject: Digest Footer
>
> _______________________________________________
> ejabberd mailing list
> ejabberd at jabber.ru
> http://lists.jabber.ru/mailman/listinfo/ejabberd
>
>
> ------------------------------
>
> End of ejabberd Digest, Vol 155, Issue 9
> ****************************************
>



-- 

*Best Regards*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.jabber.ru/pipermail/ejabberd/attachments/20160618/21d1af57/attachment.html>


More information about the ejabberd mailing list