[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Block IP address after failure Bind

To: openldap-technical@openldap.org
Subject: Re: Block IP address after failure Bind
From: "Dieter Kluenter" <dieter@dkluenter.de>
Date: Tue, 10 Feb 2009 20:06:55 +0100
In-reply-to: <eca827cf0902100946k25070d04k616b2432d755fc0@mail.gmail.com> (jakjr's message of "Tue, 10 Feb 2009 15:46:56 -0200")
References: <eca827cf0902100946k25070d04k616b2432d755fc0@mail.gmail.com>
User-agent: Gnus/5.1008 (Gnus v5.10.8) XEmacs/21.5-b28 (linux)

jakjr <joao.alfredo@gmail.com> writes:

> Hello,
>
> Is there a way to block a specific ip address when this ip attempt to
> bind many times if failure result ??
>
> This could be useful to prevent a brute-force attack.
>
> I know that ppolicy can lockout the user after some failed attempts.
> But I would like to block new connections from the IP, after this IP
> try to make a number of fail binds.

man slapd.access(5) only describes positive connections but there is a
hint to disable defined objectclasses. Something like
access to <whatever> by peername.ip=<ipnumber> attrs=!objectclass=*
But you may file an ITS to ask for negative connection rules.

-Dieter

-- 
Dieter KlÃnter | Systemberatung
http://www.dpunkt.de/buecher/2104.html
sip: +49.180.1555.7770535
GPG Key ID:8EF7B6C6
53Â08'09,95"N
10Â08'02,42"E

References:
- Block IP address after failure Bind
  - From: jakjr <joao.alfredo@gmail.com>

Prev by Date: Block IP address after failure Bind
Next by Date: Re: Block IP address after failure Bind
Index(es):
- Chronological
- Thread