[XCSSA] Logging & dynamic firewall program(s)

xcssa@xcssa.org xcssa@xcssa.org
24 Oct 2007 01:39:06 -0500 

--=-FN+3Nqbclfj1ziQlX9am
Content-Type: text/plain
Content-Transfer-Encoding: 7bit

    You can see if dovecot is compiled to use tcpwrappers using ldd.  If you
    see it linking against libwrap then it is just a matter of sorting out
    what the programs name needs to be for the config file.
    
    Nate
    


Whew!  Thanks for the suggestion Nate - but that's way above my head. 
I'm not a coder, just a builder/administrator.

I'll keep looking for a good solution.  I can see that most of my
problem can be fixed with configurations in xinetd and using DenyHosts. 
But that still leaves Dovecot's POP hanging out in the wind (since I
can't find anything about using TCP Wrappers with it).

My other options is to convert the overlay authentication from a
database to a flat file.  Obviously, a flat file doesn't provide the
performance or scale of a database.  But if these hacks keep corrupting
the database, and I can't find a solution to keep out the FTP & POP
hackers -- I may have to go to the flat files.

Thanks again for the suggestions.  I'll keep look around a bit before I
jump off the edge.


Chuck



--=-FN+3Nqbclfj1ziQlX9am
Content-Type: text/html; charset=utf-8

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 TRANSITIONAL//EN">
<HTML>
<HEAD>
  <META HTTP-EQUIV="Content-Type" CONTENT="text/html; CHARSET=UTF-8">
  <META NAME="GENERATOR" CONTENT="GtkHTML/1.0.4">
</HEAD>
<BODY>
    <BLOCKQUOTE>
<PRE><FONT COLOR="#737373"><FONT SIZE="3"><I>You can see if dovecot is compiled to use tcpwrappers using ldd.  If you</FONT></FONT></I>
<FONT COLOR="#737373"><FONT SIZE="3"><I>see it linking against libwrap then it is just a matter of sorting out</FONT></FONT></I>
<FONT COLOR="#737373"><FONT SIZE="3"><I>what the programs name needs to be for the config file.</FONT></FONT></I>
<FONT COLOR="#737373"><FONT SIZE="3"><I></FONT></FONT></I>
<FONT COLOR="#737373"><FONT SIZE="3"><I>Nate</FONT></FONT></I>
<FONT COLOR="#737373"><FONT SIZE="3"><I></FONT></FONT></I></PRE>
    </BLOCKQUOTE>

<BR>
Whew!&nbsp; Thanks for the suggestion Nate - but that's way above my head.&nbsp; I'm not a coder, just a builder/administrator.
<BR>

<BR>
I'll keep looking for a good solution.&nbsp; I can see that most of my problem can be fixed with configurations in xinetd and using DenyHosts.&nbsp; But that still leaves Dovecot's POP hanging out in the wind (since I can't find anything about using TCP Wrappers with it).
<BR>

<BR>
My other options is to convert the overlay authentication from a database to a flat file.&nbsp; Obviously, a flat file doesn't provide the performance or scale of a database.&nbsp; But if these hacks keep corrupting the database, and I can't find a solution to keep out the FTP &amp; POP hackers -- I may have to go to the flat files.
<BR>

<BR>
Thanks again for the suggestions.&nbsp; I'll keep look around a bit before I jump off the edge.
<BR>

<BR>

<BR>
Chuck
<BR>

<BR>

</BODY>
</HTML>

--=-FN+3Nqbclfj1ziQlX9am--