dovecot_login authenticator failed for (ylmf-pc)
Posted: 20 Aug 2011, 08:28
Hello
i am using your csf service for 2 dedicated server where i got almost all next day attack report from different IP address on both server with same computer name:
1.
Time: Thu Aug 18 11:46:45 2011 -0500
IP: 183.1.164.118 (CN/China/-)
Failures: 5 (smtpauth)
Interval: 300 seconds
Blocked: Permanent Block
Log entries:
2011-08-18 11:46:24 dovecot_login authenticator failed for (ylmf-pc) [183.1.164.118]: 535 Incorrect authentication data (set_id=designs)
2011-08-18 11:46:30 dovecot_login authenticator failed for (ylmf-pc) [183.1.164.118]: 535 Incorrect authentication data (set_id=designs)
2011-08-18 11:46:34 dovecot_login authenticator failed for (ylmf-pc) [183.1.164.118]: 535 Incorrect authentication data (set_id=designs)
2011-08-18 11:46:38 dovecot_login authenticator failed for (ylmf-pc) [183.1.164.118]: 535 Incorrect authentication data (set_id=designs)
2011-08-18 11:46:42 dovecot_login authenticator failed for (ylmf-pc) [183.1.164.118]: 535 Incorrect authentication data (set_id=designs)
2.
Time: Sat Aug 20 02:11:48 2011 +0100
IP: 59.58.240.66 (CN/China/-)
Failures: 10 (smtpauth)
Interval: 300 seconds
Blocked: Permanent Block
Log entries:
2011-08-20 02:10:52 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:10:58 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:04 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:10 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:16 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:22 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:28 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:33 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:39 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:45 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
I search on internet to see is there any other have same problem and yes, please check:
https://encrypted.google.com/search?q=d ... 54&bih=771
Does maybe anyone know is this mistake by csf or what?
thank you!
i am using your csf service for 2 dedicated server where i got almost all next day attack report from different IP address on both server with same computer name:
1.
Time: Thu Aug 18 11:46:45 2011 -0500
IP: 183.1.164.118 (CN/China/-)
Failures: 5 (smtpauth)
Interval: 300 seconds
Blocked: Permanent Block
Log entries:
2011-08-18 11:46:24 dovecot_login authenticator failed for (ylmf-pc) [183.1.164.118]: 535 Incorrect authentication data (set_id=designs)
2011-08-18 11:46:30 dovecot_login authenticator failed for (ylmf-pc) [183.1.164.118]: 535 Incorrect authentication data (set_id=designs)
2011-08-18 11:46:34 dovecot_login authenticator failed for (ylmf-pc) [183.1.164.118]: 535 Incorrect authentication data (set_id=designs)
2011-08-18 11:46:38 dovecot_login authenticator failed for (ylmf-pc) [183.1.164.118]: 535 Incorrect authentication data (set_id=designs)
2011-08-18 11:46:42 dovecot_login authenticator failed for (ylmf-pc) [183.1.164.118]: 535 Incorrect authentication data (set_id=designs)
2.
Time: Sat Aug 20 02:11:48 2011 +0100
IP: 59.58.240.66 (CN/China/-)
Failures: 10 (smtpauth)
Interval: 300 seconds
Blocked: Permanent Block
Log entries:
2011-08-20 02:10:52 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:10:58 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:04 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:10 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:16 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:22 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:28 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:33 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:39 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
2011-08-20 02:11:45 dovecot_login authenticator failed for (ylmf-pc) [59.58.240.66]: 535 Incorrect authentication data (set_id=enquiries)
I search on internet to see is there any other have same problem and yes, please check:
https://encrypted.google.com/search?q=d ... 54&bih=771
Does maybe anyone know is this mistake by csf or what?
thank you!