mirror of https://github.com/fail2ban/fail2ban
11 lines
459 B
Plaintext
11 lines
459 B
Plaintext
# Fail2Ban filter to match wrong passwords as notified by lighttpd's auth Module
|
|
#
|
|
|
|
[Definition]
|
|
|
|
failregex = ^\s*(?:: )?\(?(?:http|mod)_auth\.c\.\d+\) (?:password doesn\'t match for (?:\S+|.*?) username:\s+<F-USER>(?:\S+|.*?)</F-USER>\s*|digest: auth failed(?: for\s+<F-ALT_USER>(?:\S+|.*?)</F-ALT_USER>\s*)?: (?:wrong password|uri mismatch \([^\)]*\))|get_password failed),? IP: <HOST>\s*$
|
|
|
|
ignoreregex =
|
|
|
|
# Author: Francois Boulogne <fboulogne@april.org>
|