mirror of https://github.com/jrbrtsn/ban2fail
Cosmetic edits
This commit is contained in:
parent
db444512dc
commit
11ea247964
16
ban2fail.cfg
16
ban2fail.cfg
|
@ -2,7 +2,7 @@
|
|||
|
||||
# Whitelist ourself
|
||||
MAX_OFFENSES -1 {
|
||||
# Put your server's IP addresses here
|
||||
# Put your server's IP addresses here
|
||||
# IP= 1.2.3.4
|
||||
IP= 127.0.0.1
|
||||
# IP= dead:beef::20::32a
|
||||
|
@ -68,24 +68,24 @@ MAX_OFFENSES 200 {
|
|||
|
||||
LOGTYPE auth {
|
||||
|
||||
# Where to find the log files
|
||||
# Where to find the log files
|
||||
DIR= /var/log
|
||||
PREFIX= auth.log
|
||||
|
||||
# How to read the timestamp
|
||||
# How to read the timestamp
|
||||
TIMESTAMP auth_ts {
|
||||
# isolates the timestamp from a line matched by a TARGET
|
||||
# isolates the timestamp from a line matched by a TARGET
|
||||
REGEX= ^(.*) srv
|
||||
# Passed to strptime() to intrepret the timestamp string
|
||||
# Passed to strptime() to intrepret the timestamp string
|
||||
STRPTIME= %b %d %T
|
||||
# These stamps do not include the year, so it is implied.
|
||||
# These stamps do not include the year, so it is implied.
|
||||
FLAGS= GUESS_YEAR
|
||||
}
|
||||
|
||||
TARGET imap {
|
||||
# Pattern to search for, isolates the IP address
|
||||
# Pattern to search for, isolates the IP address
|
||||
REGEX= imapd.*Login failed.*\[([0-9.a-f:]+)\]$
|
||||
# Assign this as the severity of the offense.
|
||||
# Assign this as the severity of the offense.
|
||||
SEVERITY= 3
|
||||
}
|
||||
|
||||
|
|
Loading…
Reference in New Issue