Latest revision as of 10:55, 19 October 2023

Links

Custom rules

assp.conf

failregex =  \[Worker_.*\] <HOST> \[SMTP Error\] 535 5.7.8 Error: authentication failed: 
                        \[Worker_.*\] \[SSL-in\] \[TLS-out\] <HOST> \[SMTP Error\] 535 
                       \[Worker_.*\] \[MessageLimit\] <HOST>
                       \[Worker_.*\] <HOST> .* \[SMTP Error\] 554 5.7.1

HOWTO

test filter

fail2ban-regex /usr/share/assp/logs/maillog.txt /etc/fail2ban/filter.d/assp.conf

FAQ

Error in FilterPyinotify callback: 'module' object has no attribute '_strptime_time'

Enabling sshd-ddos filter seems to trigger this

WARNING Unable to find a corresponding IP address for client: (-2, 'Name or service not known')

Crap code, maybe look at usedns in fail.conf

I don't see the rules

Maybe its using ipset, check

ipset list

unban an IP

fail2ban-client set <jailname> unbanip <bannedip>

sshd rule not working on Ubuntu 20.04

Probably silently fails on missing pyinotify

apt install inotify-tools inotify-hookable python-pyinotify

OR change backend:

sshd_backend = systemd

(not working??)

@@ Line 2: / Line 2: @@
 *[http://www.fail2ban.org/wiki/index.php/Main_Page Homepage Wiki]
 *[https://www.sshguard.net/ sshguard, an alternative]
+*[https://wiki.archlinux.org/title/fail2ban Archlinux wiki fail2ban]
 =Custom rules=
@@ Line 12: / Line 13: @@
+=HOWTO=
+==test filter==
+ fail2ban-regex /usr/share/assp/logs/maillog.txt /etc/fail2ban/filter.d/assp.conf
 =FAQ=
@@ Line 22: / Line 26: @@
-==test filter==
-  fail2ban-regex /usr/share/assp/logs/maillog.txt /etc/fail2ban/filter.d/assp.conf
+==I don't see the rules==
+Maybe its using ipset, check
+ ipset list
+==unban an IP==
+  fail2ban-client set <jailname> unbanip <bannedip>
+==sshd rule not working on Ubuntu 20.04==
+Probably silently fails on missing pyinotify
+ apt install inotify-tools inotify-hookable python-pyinotify
+OR change backend:
+ sshd_backend = systemd
+(not working??)

Anonymous

Search

Fail2ban: Difference between revisions

Namespaces

More

Page actions

Latest revision as of 10:55, 19 October 2023

Contents

Links

Custom rules

assp.conf

HOWTO

test filter

FAQ

Error in FilterPyinotify callback: 'module' object has no attribute '_strptime_time'

WARNING Unable to find a corresponding IP address for client: (-2, 'Name or service not known')

I don't see the rules

unban an IP

sshd rule not working on Ubuntu 20.04

Navigation

Navigation

Wiki tools

Wiki tools

Anonymous

Search

Fail2ban: Difference between revisions

Latest revision as of 10:55, 19 October 2023

Links

Custom rules

assp.conf

HOWTO

test filter

FAQ

Error in FilterPyinotify callback: 'module' object has no attribute '_strptime_time'

WARNING Unable to find a corresponding IP address for client: (-2, 'Name or service not known')

I don't see the rules

unban an IP

sshd rule not working on Ubuntu 20.04

Navigation

Wiki tools

Page tools