Someone did a DoS on me today, on port 110 Aka Dovecot, and i had a very high load. 4.x

a quick apf -d ip and service dovecot restart fixed it.

But it made me look for exploit info / newer version, maybe there is something on the 1.03 version?


Maybe start a stickifed thread so we can warn you about new software updates? ;)

Why do you expect Dovecot to be a cause of the DOS? Generally a DOS occurs when some external system(s) attack a port on your server.

Why do you think this may be a Dovecot problem?

Jeff

It probally generally pop3 , the person connected to all my ips on port 110 and it generated a very heavy load on my server.

I guess its it will happen to all pop3 servers?

But the main point is that you should put newest dovecot into the custombuild :)

You're writing about two separate issues.

DirectAdmin staff makes determination as to how quickly they install new versions.

And if you want to block DOS attacks you might want to install a firewall that adapts to stop them; if you're running Linux, a good one to consider is APF+BFD.

Jeff