CERBERUS/fail2ban
1
0
Fork 0
mirror of https://github.com/fail2ban/fail2ban.git synced 2026-05-13 14:36:43 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

sendmail-auth.conf: filter updated for longer mail IDs (up to 20, see gh-2562)

Browse source
This commit is contained in:
Henry van Megen 2019-11-06 15:28:17 +01:00 committed by sebres
parent 5cf064a112
commit 548e2e0054
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
config/filter.d/sendmail-auth.conf
View file

@ -9,7 +9,8 @@ before = common.conf
_daemon = (?:sendmail|sm-(?:mta|acceptingconnections))
failregex = ^%(__prefix_line)s\w{14}: (\S+ )?\[(?:IPv6:<IP6>|<IP4>)\]( \(may be forged\))?: possible SMTP attack: command=AUTH, count=\d+$
# "w{14,20}" will give support for IDs from 14 up to 20 characters long
failregex = ^%(__prefix_line)s\w{14,20}: (\S+ )?\[(?:IPv6:<IP6>|<IP4>)\]( \(may be forged\))?: possible SMTP attack: command=AUTH, count=\d+$
ignoreregex =