Details |
Last modification |
View Log
| RSS feed
| Rev |
Author |
Line No. |
Line |
| 193 |
- |
1 |
# Fail2Ban filter for Grafana
|
|
|
2 |
# Detecting unauthorized access
|
|
|
3 |
# Typically logged in /var/log/grafana/grafana.log
|
|
|
4 |
|
|
|
5 |
[Init]
|
|
|
6 |
datepattern = ^t=%%Y-%%m-%%dT%%H:%%M:%%S%%z
|
|
|
7 |
|
|
|
8 |
[Definition]
|
|
|
9 |
failregex = ^(?: lvl=err?or)? msg="Invalid username or password"(?: uname=(?:"<F-ALT_USER>[^"]+</F-ALT_USER>"|<F-USER>\S+</F-USER>)| error="<F-ERROR>[^"]+</F-ERROR>"| \S+=(?:\S*|"[^"]+"))* remote_addr=<ADDR>$
|