hi, exim4 mainlog sample (server ip obfuscated):
2020-08-18 12:02:48 [13110] 1k844V-0003PS-LP H=(mail-pg1-f181.google.com) [209.85.215.181]:38343 I=[10.0.0.0]:25 Warning: EXIM-SPAMMASSASSIN-EXCESSIVE-FAIL2BAN my attempt at regex failregex = ^%(pid)s \S+ %(host_info)sWarning: EXIM-SPAMMASSASSIN-EXCESSIVE-FAIL2BAN$ It doesn't match :( I think I am not understanding how to detect / match the text inbetween the ProcessID and HOSTINFO pieces online regex testers don't seem to work with fail2ban python syntax, or else I'm using them incorrectly. if you know of an online regex tester which works, please advise. thanks in advance !
_______________________________________________ Fail2ban-users mailing list Fail2ban-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fail2ban-users
