Doug Thanks for that help.
Ok I updated the date format then added in this in the assp.conf file: failregex = <HOST> \[EarlyTalker\] got \'non printable hex data\' and that seems to work when I run the test Thanks a lot! So these entries just get added to the iptables firewall, but would they show up in CSF interface (do you know?) John -----Original Message----- From: Doug Lytle [mailto:supp...@drdos.info] Sent: September-05-13 3:38 PM To: For Users of ASSP Subject: Re: [Assp-user] help with smtp attack >> failregex = .*? \d{5}-\d{5} <HOST> <.*?> got \'non printable hex >> data\' from I'm using ASSP version 2. I had to change the ASSP logs to conform to what Fail2Ban was expecting. I was able to do this under logging. The new layout for my logs are: DD-MM-YYYY hh:mm:ss Here is an example for banning relay attempts: failregex = \[RelayAttempt\] <HOST> And one for Authentication failures: failregex = <HOST> .*?authentication failure It took me a bit of time to get them to work, but using the fail2ban-regex tool, I was finally able to get what I wanted. Doug ---------------------------------------------------------------------------- -- Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more! Discover the easy way to master current and previous Microsoft technologies and advance your career. Get an incredible 1,500+ hours of step-by-step tutorial videos with LearnDevNow. Subscribe today and save! http://pubads.g.doubleclick.net/gampad/clk?id=58041391&iu=/4140/ostg.clktrk _______________________________________________ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user ------------------------------------------------------------------------------ Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more! Discover the easy way to master current and previous Microsoft technologies and advance your career. Get an incredible 1,500+ hours of step-by-step tutorial videos with LearnDevNow. Subscribe today and save! http://pubads.g.doubleclick.net/gampad/clk?id=58041391&iu=/4140/ostg.clktrk _______________________________________________ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user
