mirror of https://github.com/fail2ban/fail2ban
22 lines
401 B
Plaintext
22 lines
401 B
Plaintext
# Fail2Ban filter for postfix authentication failures
|
|
#
|
|
|
|
[INCLUDES]
|
|
|
|
before = common.conf
|
|
|
|
[Definition]
|
|
|
|
_daemon = postfix/(submission/)?smtp(d|s)
|
|
|
|
failregex = ^%(__prefix_line)swarning: [-._\w]+\[<HOST>\]: SASL (?:LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed(: [ A-Za-z0-9+/]*={0,2})?\s*$
|
|
|
|
ignoreregex =
|
|
|
|
[Init]
|
|
|
|
journalmatch = _SYSTEMD_UNIT=postfix.service
|
|
|
|
|
|
# Author: Yaroslav Halchenko
|