how to set captcha code for Roundcube webmail

AriyanPayamak

AriyanPayamak

Verified User
Joined
Nov 4, 2014
Messages
28
Hello Every One
There are many attacks on my Direct Admin email service, how can I prevent these attacks?
In my opinion, if the email login page has a captcha code, this problem will be solved, I searched on Google, but I didn't find anything that could guide me to set these settings in the management console or ssh to do it through these settings.
2022-07-14_12-07-46.jpg
I block more than 2000 IPs daily, it increases the load or over load of my server.
 
Last edited:
you sure they all coming from roundcube? maybe they directly connected to domains and their mail ports?
you can try to configure CSF to block some country codes for incoming ports if your visitors not from worldwide
or configure csf to block after less attempts, also switch to IPSET - it uses less CPU resources, that allows you to keep blocklist bigger.
 
Zhenyapan said:
you sure they all coming from roundcube? maybe they directly connected to domains and their mail ports?
you can try to configure CSF to block some country codes for incoming ports if your visitors not from worldwide
or configure csf to block after less attempts, also switch to IPSET - it uses less CPU resources, that allows you to keep blocklist bigger.
Click to expand...
Do you think blocking all IPs is a wise thing?
My server is in Canada and I am in Iran
Do you think I should block entries from other countries?
For example, America or China or Russia?
This creates a serious and new problem
 
that's why I wrote "you can try" I don't know all situation and just give you few variants.
you can wrote your own rules to filter wrong attempts more correct or use some external filter, like cloudflare captcha.
 
I don't need email sending service on my host, the number of attacks has decreased since ,I disabled the email service.
 
Last edited:
AriyanPayamak said:
I don't need email sending service on my host, the number of attacks has decreased since ,I disabled the email service.
Click to expand...
previously you want to protect email, now you want to disable.
to isable - just stop exim/dovecot/popb4smtp services and remove their ports from CSF IN
 
You must log in or register to reply here.
Back
Top