On 07-Mar-11 21:49, Eric Shubert wrote:
Great job, Pak.
Thanks, Toma.
Pak, will you get this incorporated into the wiki?
TIA.
Ok Eric, it's done but since I just copy-paste as is and re-formatting,
I didn't know what that fail2ban meaning (I haven't tried it also)
but, I saw something weird. So I would like to ask Sergio, Toma and
other who understand fail2ban
@Sergio,
you create a filter named /etc/fail2ban/filter.d/vpopmail-fail.conf
but the regex is searching for vchkpw-smtp: password fail ([^)]*)
[^@]*@[^:]*:<HOST>
and how come on action you blocking smtp port rather then pop3 port
action = iptables[name=SMTP, port=smtp, protocol=tcp]
@Toma,
I have change
logpath = /your/path/to/pop3/logs
into
logpath = /var/log/maillog
because that is the log where I can find error "vpopmail user not found"
on qmt system
btw I have change
action = shorewall
into
action = iptables[name=SMTP, port=smtp, protocol=tcp]
and the question also same, why did you block smtp port for error in
pop3 log
I think we need standardize fail2ban rules for QMT
---------------------------------------------------------------------------------
Qmailtoaster is sponsored by Vickers Consulting Group
(www.vickersconsulting.com)
Vickers Consulting Group offers Qmailtoaster support and installations.
If you need professional help with your setup, contact them today!
---------------------------------------------------------------------------------
Please visit qmailtoaster.com for the latest news, updates, and packages.
To unsubscribe, e-mail: qmailtoaster-list-unsubscr...@qmailtoaster.com
For additional commands, e-mail: qmailtoaster-list-h...@qmailtoaster.com