This documentation is for Dovecot v2.x, see wiki1 for v1.x documentation.

Authentication Penalty

Dovecot anvil process tracks authentication penalties for different IPs to slow down brute force login attempts. The algorithm works by:

Problems:

Authentication penalty tracking can be disabled completely with:

service anvil {
  unix_listener anvil-auth-penalty {
    mode = 0
  }
}

Also you can have similar functionality with fail2ban.

Authentication/Penalty (last edited 2013-11-28 10:23:41 by TimoSirainen)