On 10/13/11 10:10, Steve wrote:
> Let's say someone forgets their password and keeps trying to log in.  After
> a period of time it will lock out attempts from that IP it seems.  I know
> there is a predetermined time that it will reset and allow attempts again -
> but is there a tellmail command that will release the lockout on accounts/ip
> addresses?
>
> I've tried reloading the config etc but doesn't seem to work.
>
> Also is there a way to see which accounts are locked out, which IP's?
> Sometimes we get some customers send over 300 in a day and I get a warning
> and it was legit mail so I want to allow them more.  Generally I put
> corporations like that in a white list, but in some cases I do not want to.
> I just want to reset their daily allowance.  Is there a way to do this?
>
> Thanks in advance :)
>
>

The temp IP lockouts are kept in memory.  In our system, the time to get 
locking out is 10 minutes.  Long enough to discourage the bad guys, but 
easy enough to tell the customer to go get a cup of coffee and try 
again.  I find they understand the need for the lock out and are 
comfortable when they find out it's only 10 minutes long.

The threshold for that warning message is a system wide setting, not a 
domain or user level warning.  I found that I can count on one had the 
number of accounts we have that exceed that, so it's easy enough to 
ignore them.

Lyle Giese
LCR Computer Services, Inc.