github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity

Update nginx-tls-fallback.conf 

more precise and conclusive regex without catch-all's
pull/2881/head
Sergey G. Brester 2020-11-26 12:25:32 +01:00 committed by GitHub
parent c0256724a7
commit d959f6d199
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
config/filter.d/nginx-tls-fallback.conf
View File

@ -5,12 +5,10 @@
[Definition] [Definition]
failregex = ^ \[crit\] \d+#\d+: \*\d+ SSL_do_handshake\(\) failed.*?ssl3_get_record.*?too.*?, client: <HOST>, server: \S+$ failregex = ^\s*\[crit\] \d+#\d+: \*\d+ SSL_do_handshake\(\) failed \(SSL: error:\S+(?: \S+){1,3} too (?:long|short)\)[^,]*, client: <HOST>
ignoreregex = ignoreregex =
datepattern = {^LN-BEG} datepattern = {^LN-BEG}
# Author: Stephan Orlowsky # Author: Stephan Orlowsky
# maybe not restrictive enough, will also match:
#"[crit] 76952#76952: *5062354 SSL_do_handshake() failed ssl3_get_record too, client: 0.0.0.0, server: thisshouldntmatch"