github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9b0f39a17d'
${ noResults }
fail2ban/config/filter.d/postfix.conf

32 lines
1.0 KiB
Raw Normal View History Unescape

DOC: in filters, put user relevant doc at top, and developer info at bottom, and remove all the repetative blindly copied stuff that appears in the jail man page
11 years ago
# Fail2Ban filter for selected Postfix SMTP rejections
- Added qmail and postfix filters - Updated vsftpd and couriersmtp git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/trunk@331 a942ae1a-1317-0410-a47c-b1dcaea8d605
18 years ago
#
#
ENH: Improve postfix regex and add more samples
12 years ago
[INCLUDES]
# Read common prefixes. If any customizations available -- read them from
# common.local
before = common.conf
- Added qmail and postfix filters - Updated vsftpd and couriersmtp git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/trunk@331 a942ae1a-1317-0410-a47c-b1dcaea8d605
18 years ago
[Definition]
Be more backward compatible on matching postfix/smtps/smtpd Support trailing smtps also and not only smtpd. suggested by @sebres
9 years ago
_daemon = postfix(-\w+)?/(?:submission/|smtps/)?smtp[ds]
ENH: Improve postfix regex and add more samples
12 years ago
Several filters optimized with pre-filtering using new option `prefregex`
8 years ago
prefregex = ^%(__prefix_line)s(?:NOQUEUE: reject:|improper command pipelining) <F-CONTENT>.+</F-CONTENT>$
failregex = ^RCPT from \S+\[<HOST>\]: 554 5\.7\.1
postfix.conf: removes unneeded end-anchoring like `.*$`, etc. also removes several dynamic content at end, which are of no avail there. Additionally normalizes optional part (mail-ID) after reason number.
8 years ago
^RCPT from \S+\[<HOST>\]: 450 4\.7\.1 Client host rejected: cannot find your (reverse )?hostname\b
^RCPT from \S+\[<HOST>\]: 450 4\.7\.1 (<[^>]*>)?: Helo command rejected: Host not found\b
^EHLO from \S+\[<HOST>\]: 504 5\.5\.2 (<[^>]*>)?: Helo command rejected: need fully-qualified hostname\b
Several filters optimized with pre-filtering using new option `prefregex`
8 years ago
^VRFY from \S+\[<HOST>\]: 550 5\.1\.1
postfix.conf: removes unneeded end-anchoring like `.*$`, etc. also removes several dynamic content at end, which are of no avail there. Additionally normalizes optional part (mail-ID) after reason number.
8 years ago
^RCPT from \S+\[<HOST>\]: 450 4\.1\.8 (<[^>]*>)?: Sender address rejected: Domain not found\b
Update postfix filters and tests
8 years ago
^after \S+ from [^[]*\[<HOST>\]:?
- Added option "ignoreregex" in filter scripts and jail.conf. Feature Request #1283304 git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/trunk@458 a942ae1a-1317-0410-a47c-b1dcaea8d605
18 years ago
- Defined default values in .conf. Should fix Debian bug #398758 git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/trunk@464 a942ae1a-1317-0410-a47c-b1dcaea8d605
18 years ago
ignoreregex =
NF: Add systemd journal backend
12 years ago
[Init]
journalmatch = _SYSTEMD_UNIT=postfix.service
MRG: 0.8.11 to 0.9 Epnoc of selinux is now true UTC Merge multiline support and date detection in filter
11 years ago
DOC: in filters, put user relevant doc at top, and developer info at bottom, and remove all the repetative blindly copied stuff that appears in the jail man page
11 years ago
# Author: Cyril Jaquier