Has anyone made a fail2ban filter configuration to block random attempts on POP3 (and SMTP) for kerio mailserver? Fail2ban would be great to block these attempts in the kerio warning log: Code: [20/Dec/2009 16:35:59] POP3: User user<_at_>example doesn't exist. Attempt from IP address XXX.XXX.XX.XX and Code: [22/Nov/2009 00:05:01] POP3: Invalid password for user user<_at_>example. Attempt from IP address XXX.XXX.XX.XX Fail2ban works great with the standard filters included in the package, but I can't find a working config for kerio unfortunately ... Anyone managed to write a working filter config for fail2ban? Help would be really appreciated! Thanks, Tom.