Pegasus Mail & Mercury

Welcome to the Community for Pegasus Mail and
The Mercury Mail Transport System, the Internet's longest-serving PC e-mail system!
Welcome to Pegasus Mail & Mercury Sign in | Join | Help
in
Home Blogs Forums Downloads Pegasus Mail Overview Mercury Overview
Pegasus Mail & Mercury » Mercury Mail Transport System » Mercury Mail Transport System » Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

Last post 07-23-2008, 7:03 by passau. 12 replies.
Sort Posts: Previous Next

  •  07-16-2008, 19:03

    • passau is not online. Last active: 07-31-2008, 7:17 passau
    • Top 500 Contributor
    • Joined on 07-16-2008
    • Member
    • Points 145

    How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    How can I disable short-term blacklisting in mercury/32 4.62 POP3 (and IMAP4) server for some ip addresses (perhaps 127.0.0.1 which is the endpoint of a SSL-stunnel).

    Many thanks,

    Thomas

  •  07-16-2008, 22:34

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    Once you are on the STB, either wait 30 mins (Cool) or restart Mercury.

    To NOT get on the list, add the IP or IP range to the 'Connection Control' list (in mercS config) and tick 'Exempt from transaction filtering'.

  •  07-22-2008, 8:43

    • passau is not online. Last active: 07-31-2008, 7:17 passau
    • Top 500 Contributor
    • Joined on 07-16-2008
    • Member
    • Points 145

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    Sorry, but that doesn't help. The short-term blacklisting in the POP3 and IMAP4 server can not be controlled by the SMTP server configuration.

     

  •  07-22-2008, 8:52

    • PaulW is not online. Last active: 21 Aug 2008, 9:56 PaulW
    • Top 10 Contributor
    • Joined on 05-08-2007
    • UK
    • Contributor
    • Points 4,370

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    All the Mercury server modules have a 'Connection control' tab in their configuration.  Have you tried entering 'allow' IP entries in those?

     

  •  07-22-2008, 9:53

    • passau is not online. Last active: 07-31-2008, 7:17 passau
    • Top 500 Contributor
    • Joined on 07-16-2008
    • Member
    • Points 145

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    Yes, but that doesn't disable the short-term blacklisting feature.

  •  07-22-2008, 10:47

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    Sorry, must read more carefully Embarrassed

    There really should be an off switch on this, and you are right there isn't.

    What is triggering it, maybe that could be fixed?

     

  •  07-22-2008, 11:39

    • PaulW is not online. Last active: 21 Aug 2008, 9:56 PaulW
    • Top 10 Contributor
    • Joined on 05-08-2007
    • UK
    • Contributor
    • Points 4,370

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    passau:
    Yes, but that doesn't disable the short-term blacklisting feature.

    How is the blacklisting affecting your IMAP connections?  I'm using both stunnel and direct connections and don't see the issue you are having.

  •  07-22-2008, 12:03

    • passau is not online. Last active: 07-31-2008, 7:17 passau
    • Top 500 Contributor
    • Joined on 07-16-2008
    • Member
    • Points 145

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    an "excessive password failure" is triggering the short-term blacklisting.

    But that could not be fixed in all circumstances..

  •  07-22-2008, 12:08

    • passau is not online. Last active: 07-31-2008, 7:17 passau
    • Top 500 Contributor
    • Joined on 07-16-2008
    • Member
    • Points 145

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    all our users must use the SSL-connection over stunnel (the firewall blocks unsecure direct connections over the internet) and therefore the short-term blacklist of the stunnel (127.0.0.1) forbidds any new connections to the services POP3 and IMAP.

  •  07-22-2008, 15:59

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    maybe time to revisit your firewall policy?

    what is the problem with an open mail port?

    with SSL without the tunnel. 

  •  07-22-2008, 16:55

    • PaulW is not online. Last active: 21 Aug 2008, 9:56 PaulW
    • Top 10 Contributor
    • Joined on 05-08-2007
    • UK
    • Contributor
    • Points 4,370

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    passau:
    an "excessive password failure" is triggering the short-term blacklisting.

    I've managed to reproduce this with the POP server (but not with IMAP and it does not appear to affect my IMAP connections).

    I don't recall reading about this before, and unlike the SMTP compliance backlisting, this is not a configuration option. :(

    As DLN suggests, can you not use the built-in SSL/TLS connections, or are you like me, running an older OS where they are incompatiple?

  •  07-23-2008, 1:08

    • David Harris is not online. Last active: 08-20-2008, 7:05 David Harris
    • Top 10 Contributor
    • Joined on 01-31-2007
    • New Zealand
    • Contributor
    • Points 7,800
    • SystemAdministrator

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    passau:

    an "excessive password failure" is triggering the short-term blacklisting.



    I'll see what I can do about this - it's probably as easy as adding the same sort of connection control exemption as exists in MercuryS. If it turns out to be as easy as I think it will be, then I should be able to get a patch out fairly quickly.

    Cheers!

    -- David --

  •  07-23-2008, 7:03

    • passau is not online. Last active: 07-31-2008, 7:17 passau
    • Top 500 Contributor
    • Joined on 07-16-2008
    • Member
    • Points 145

    Re: How to disable short-term blacklisting in mercury/32 4.62 POP3 or IMAP4 server for some ip addresses

    that's perfect. Many thanks David.

    Thomas
View as RSS news feed in XML

Copyright © 2007 David Harris / Peter Strömblad. All Rights Reserved. | Terms of Use | Privacy Statement
Questions/Problems with community.pmail.com? | Visit our Hoster: PraktIT | Pegasus Mail Home Page