|
You won't be able to do anything with your auth.log line as it does
not contain an IP address. Nick On 21/12/2018 12:20,
[email protected] wrote:
Hello together,I am using fail2ban on Raspbian Stretch Lite for SSHD and Nginx Basic-Auth. SSHD works fine for me, but the default pam-generic Regex will not find entries like this: Entry from /var/log/auth.log Dec 21 11:32:19 raspberrypi ker process:pam_unix(nginx:auth): authentication failure; logname= uid=33 euid=33 tty= ruser= rhost= I could use htpassw and the Nginx-Basic-Auth Filter but I have to use PAM and my Regex knowledge is too basic for this problem :( I am looking for a filter like this: http://txt2re.com/index-python.php3?s=Dec 21 11:32:19 raspberrypi ker process:pam_unix(nginx:auth): authentication failure; logname= uid=33 euid=33 tty= ruser= rhost=&-1&-8&-3 ((nginx:auth))(authentication failure) Thanks a lot for your help, best regards Michael _______________________________________________ Fail2ban-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fail2ban-users |
_______________________________________________ Fail2ban-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fail2ban-users
