How to deny a host trying to hack weak passwords on Domino's SMTP task

HCL Notes/Domino 8.5 Forum (includes Notes Traveler)

Subject: How to deny a host trying to hack weak passwords on Domino's SMTP task

Feedback Type: Question

Product Area: Domino Server

Technical Area: Security

Platform: ALL

Release: 8.5.3

Reproducible: Always

Hello!

I'm wondering if it's possible to set up Domino to automatically start ignoring SMTP log in attempts after let's say 1000 failed logins?

Time to time, there some nasty guys like this are trying to hack weak passwords on the Domino server by trying infinite user names and combinations like this:

SMTP Server: SMI (196.212.XXX.YY) connected
SMTP Server: SMI (196.212.XXX.YY) connected
SMTP Server: SMI (196.212.XXX.YY) connected
SMTP Server: SMI (196.212.XXX.YY) connected
SMTP Server: SMI (196.212.XXX.YY) connected
SMTP Server: Authentication failed for user theresa ; connecting host 196.212.XXX.YY
SMTP Server: SMI (196.212.XXX.YY) connected
SMTP Server: Authentication failed for user testuser ; connecting host 196.212.XXX.YY

Sure, I can block this IP address but there are still new and new IP addresses appearing.

Is it possible to automate this task somehow?

Thanks in any way,
Adam

Feedback number WEBB9BNDJL created by ~Sigmund Chukropulikle on 09/18/2013

Status: Open
Comments: