Argh, shit, this is also true, thank you. Gesendet mit BlueMail
Am 21. Dez. 2018, 13:40, um 13:40, Nick Howitt <[email protected]> schrieb: >You won't be able to do anything with your auth.log line as it does not >contain an IP address. > >Nick > >On 21/12/2018 12:20, [email protected] wrote: > >Hello together, I am using fail2ban on Raspbian Stretch Lite for SSHD >and Nginx Basic-Auth. SSHD works fine for me, but the default >pam-generic Regex will not find entries like this: Entry from >/var/log/auth.log Dec 21 11:32:19 raspberrypi ker >process:pam_unix(nginx:auth): authentication failure; logname= uid=33 >euid=33 tty= ruser= rhost= I could use htpassw and the Nginx-Basic-Auth >Filter but I have to use PAM and my Regex knowledge is too basic for >this problem :( I am looking for a filter like this: >http://txt2re.com/index-python.php3?s=Dec 21 11:32:19 raspberrypi ker >process:pam_unix(nginx:auth): authentication failure; logname= uid=33 >euid=33 tty= ruser= rhost=&-1&-8&-3 ((nginx:auth))(authentication >failure) Thanks a lot for your help, best regards Michael >_______________________________________________ Fail2ban-users mailing >list [email protected] >https://lists.sourceforge.net/lists/listinfo/fail2ban-users > > > > >------------------------------------------------------------------------ > > > >------------------------------------------------------------------------ > >_______________________________________________ >Fail2ban-users mailing list >[email protected] >https://lists.sourceforge.net/lists/listinfo/fail2ban-users
_______________________________________________ Fail2ban-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fail2ban-users
