Hi Tony.
Have You tried fail2ban ?
Cheers
Finn
Den 13-10-2019 kl. 05:01 skrev Tony White:
Hi folks,
Sorry to disturb but I have been trying to fix this for two days now.
My iMap server is methodically (brute force) attacked over many many ips.
I have written scripts to auto block the ips b
Hi,
Well I have enabled the two in the filter.d directory you mentioned
restarted/reloaded fail2ban and no change. Still no entries in the
log file.
best wishes
Tony White
On 13/10/19 7:36 pm, Solo wrote:
Hi Tony.
Have You tried fail2ban ?
Cheers
Finn
Den 13-10-2019 kl. 05:01 skrev Tony
Hi all,
FYI I have just disabled courier for now.
best wishes
Tony White
On 13/10/19 11:07 pm, Tony White wrote:
Hi,
Well I have enabled the two in the filter.d directory you mentioned
restarted/reloaded fail2ban and no change. Still no entries in the
log file.
best wishes
Tony White
Hi Tony.
What log do You expect entries in ? fail2ban.log ?
Make sure the regex in the filter.d/*.conf file You use matches the
entries in the log file(s) it monitors
A good idea is to test the *.conf file using :
fail2ban-regex "path to the log to monitor" "path to the fail2ban filter"
li
Hi,
Correct again but it seems the regex is at fault.
The regex generates no results for courierlogin
nor couriersmtp.
Trying to build a regex for these but it is not my first
language...
best wishes
Tony White
On 14/10/19 12:19 am, Solo wrote:
Hi Tony.
What log do You expect entries in