On 12/06/2019 12.00 AM, Tom Hendrikx wrote:
> The first failure line has ":" after the ip adress, but the second
> line hasn't, but your regex requires the colon. Remove the requirement
> for the colon and you're good.
>
Quite so.
Thank you.
--
James Moe
moe dot james at sohnen-moe dot com
Good day Guys
I am currently evaluating CSF / LFD and comparing to fail2ban, I have a
colleague that put me on CSF, and he claims that:
"CSF/LFD it could warn/block on *successful* logins from multiple IPs." So
say the users mail account is compromised and bots / attackers are logging
in.
I just
On 11-06-19 23:09, James Moe via Fail2ban-users wrote:
fail2ban v0.10.3
linux v4.12.14-lp150.12.58-default x86_64
The second regex (...Error Code=unknown...) below is not matching the
second example. fail2ban-regex was not helpful even with --verbosity=4;
it only matched the date pattern.