Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > Tips/Tricks/Mods

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 22nd August 2010, 00:14
gasparov gasparov is offline
Junior Member
 
Join Date: Aug 2010
Posts: 1
Thanks: 0
Thanked 4 Times in 1 Post
 
Default Suggestion: check fail2ban sasl.conf for postfix smtpd

Hi,
this problem was present on my up to date system after following the ispconfig3 guide for ubuntu 9.10 and google says some debian users had a similar problem too.(bug 573314)

If you want to block smtp brute force attempts you have to enable the sasl filter in jail.conf and change failregex in /etc/fail2ban/filter.d/sasl.conf to

Code:
failregex = (?i): warning: [-._\w]+\[<HOST>\]: SASL (?:LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed
To test it:
Code:
fail2ban-regex /var/log/mail.log /etc/fail2ban/filter.d/sasl.conf

This is a "works for me solution"

Thanks for the great guide, Ispconfig makes things so easy....
Reply With Quote
The Following 4 Users Say Thank You to gasparov For This Useful Post:
dynamind (7th January 2014), falko (22nd August 2010), sirrus (3rd March 2011), till (22nd August 2010)
Sponsored Links
Reply

Bookmarks

Tags
fail2ban, postfix, sasl, smtpd

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
monitrc configuration for Debian ISPConfig 3 server Hans Tips/Tricks/Mods 2 27th March 2011 23:22
fail2ban is doing nothing? rlischer Server Operation 16 29th June 2010 07:29
Forbidden 403; Samba access; config of maildeamon fawkes Installation/Configuration 4 14th January 2010 18:16
ISP Config not working in mandriva 2008 bigdavid889 Server Operation 8 28th February 2008 20:05
Centos 4.4 32bit Hangs, High Server load 3cwired_com Server Operation 11 16th November 2006 15:47


All times are GMT +2. The time now is 20:45.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.