Rev 70 |
Details |
Compare with Previous |
Last modification |
View Log
| RSS feed
| Rev |
Author |
Line No. |
Line |
| 3 |
- |
1 |
# Fail2Ban filter for postfix authentication failures
|
|
|
2 |
#
|
|
|
3 |
|
|
|
4 |
[INCLUDES]
|
|
|
5 |
|
|
|
6 |
before = common.conf
|
|
|
7 |
|
|
|
8 |
[Definition]
|
|
|
9 |
|
| 86 |
- |
10 |
_daemon = postfix(-\w+)?/(?:submission/|smtps/)?smtp[ds]
|
| 3 |
- |
11 |
|
| 86 |
- |
12 |
failregex = ^%(__prefix_line)swarning: [-._\w]+\[<HOST>\]: SASL ((?i)LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed(:[ A-Za-z0-9+/:]*={0,2})?\s*$
|
| 3 |
- |
13 |
|
| 33 |
- |
14 |
ignoreregex = authentication failed: Connection lost to authentication server$
|
|
|
15 |
|
|
|
16 |
[Init]
|
|
|
17 |
|
|
|
18 |
journalmatch = _SYSTEMD_UNIT=postfix.service
|
|
|
19 |
|
|
|
20 |
|
| 3 |
- |
21 |
# Author: Yaroslav Halchenko
|