locked out accounts: how to disable authentication with alias

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
crose9
Posts: 13
Joined: Fri Sep 12, 2014 11:21 pm

locked out accounts: how to disable authentication with alias

Postby crose9 » Sat Nov 03, 2018 11:16 am

Dear all

in the last weeks we see brute force logins of thousands of individual IP addresses. This leads to 'locked out' accounts. In our setup, the official user email address is an alias to the account.

My Question: is it possible to disable authentication (IMAP, SMTP, Web) with the alias (only with the account name)?

In our case it would solve the 'Denial of service due to locked out accounts' completely.

Thanks

CU
Carsten


User avatar
tonster
Zimbra Employee
Zimbra Employee
Posts: 312
Joined: Fri Feb 21, 2014 10:14 am
Location: Ypsilanti, MI
ZCS/ZD Version: Release 8.7.0_GA_1659.RHEL6_64_2016

Re: locked out accounts: how to disable authentication with alias

Postby tonster » Sat Nov 03, 2018 10:22 pm

crose9 wrote:Dear all

in the last weeks we see brute force logins of thousands of individual IP addresses. This leads to 'locked out' accounts. In our setup, the official user email address is an alias to the account.

My Question: is it possible to disable authentication (IMAP, SMTP, Web) with the alias (only with the account name)?

In our case it would solve the 'Denial of service due to locked out accounts' completely.

Thanks

CU
Carsten


No, you can't disable logins from aliases.
crose9
Posts: 13
Joined: Fri Sep 12, 2014 11:21 pm

Re: locked out accounts: how to disable authentication with alias

Postby crose9 » Mon Nov 05, 2018 7:20 pm

Dear tonster, all

thanks for the qualified answer.

The problem with brute force attacks gets bigger and bigger.

Are there any thoughts about (optional) decoupling 'account' and 'email alias' on the zimbra roadmap? From my point of view this is quite more effective than any IP-block method (especially if one IP is only used once a day)

CU
Carsten

Return to “Administrators”

Who is online

Users browsing this forum: Google [Bot] and 10 guests