chchang
/
hugo_backup
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a8361f0a1b'
${ noResults }
hugo_backup/themes/public/article/e7-ad-86-e8-a8-98fail2ban-e.../index.html

491 lines
14 KiB
Raw Blame History Escape

This file contains ambiguous Unicode characters!

This file contains ambiguous Unicode characters that may be confused with others in your current locale. If your use case is intentional and legitimate, you can safely ignore this warning. Use the Escape button to highlight these characters.

<!doctype html>
<html class="no-js" lang="en">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<meta name="author" content="Lednerb">
<meta name="description" content="Bilberry Premium Theme for Hugo.">
<meta name="keywords" content="blog,personal,responsive,search,font awesome,pages,posts,multilingual,highlight.js,syntax highlighting,premium,shortcuts">
<meta name="generator" content="Hugo 0.50" />
<title> [筆記]fail2ban 阻擋sasl登入失敗的正規化語法 | My cool new Blog</title>
<meta name="description" content="[筆記]fail2ban 阻擋sasl登入失敗的正規化語法 - Bilberry Premium Theme for Hugo.">
<meta itemprop="name" content="[筆記]fail2ban 阻擋sasl登入失敗的正規化語法">
<meta itemprop="description" content="[筆記]fail2ban 阻擋sasl登入失敗的正規化語法 - Bilberry Premium Theme for Hugo.">
<meta property="og:title" content="[筆記]fail2ban 阻擋sasl登入失敗的正規化語法">
<meta property="og:description" content="[筆記]fail2ban 阻擋sasl登入失敗的正規化語法 - Bilberry Premium Theme for Hugo.">
<meta property="og:image" content="https://www.gravatar.com/avatar/88188b6cc451928eba90e8400bc68086?size=200">
<meta property="og:url" content="https://h.cowbay.org/article/e7-ad-86-e8-a8-98fail2ban-e9-98-bb-e6-93-8bsasl-e7-99-bb-e5-85-a5-e5-a4-b1-e6-95-97-e7-9a-84-e6-ad-a3-e8-a6-8f-e5-8c-96-e8-aa-9e-e6-b3-95/">
<meta property="og:site_name" content="My cool new Blog">
<meta property="og:type" content="article">
<link rel="icon" type="image/png" href="https://h.cowbay.org/favicon-32x32.png" sizes="32x32">
<link rel="icon" type="image/png" href="https://h.cowbay.org/favicon-16x16.png" sizes="16x16">
<link rel="stylesheet" href="https://h.cowbay.org/sass/combined.min.717098cb5503581e75f12e486a847ca410bf8367d4d8713f4c37affc868c5a1d.css">
</head>
<body class="bilberry-hugo-theme">
<nav>
<div class="container">
<ul class="topnav">
<li><a href="/page/about-bilberry/">About Bilberry</a></li>
<li><a href="https://github.com/Lednerb/bilberry-hugo-theme" target="_blank">Github</a></li>
</ul>
<div id="search-box" class="search">
<i class="fa fa-search"></i>
<input id="search" type="text" placeholder="Search ...">
</div>
</div>
</nav>
<header>
<div class="container">
<div class="logo">
<a href="/" class="logo">
<img src="https://www.gravatar.com/avatar/88188b6cc451928eba90e8400bc68086?d=mm&size=200" alt="">
<span class="overlay"><i class="fa fa-home"></i></span>
</a>
</div>
<div class="titles">
<h3 class="title"><a href="/">My cool new Blog</a></h3>
<span class="subtitle">Hello World! This is the most epic subtitle ever.</span>
</div>
<div class="languages">
<a href="/en" class="active">en</a>
<a href="/de">de</a>
</div>
<div class="toggler">
<i class="fa fa-bars" aria-hidden="true"></i>
</div>
</div>
</header>
<div class="main container">
<div class="article-wrapper u-cf single">
<a class="bubble" href="/article/e7-ad-86-e8-a8-98fail2ban-e9-98-bb-e6-93-8bsasl-e7-99-bb-e5-85-a5-e5-a4-b1-e6-95-97-e7-9a-84-e6-ad-a3-e8-a6-8f-e5-8c-96-e8-aa-9e-e6-b3-95/">
<i class="fa fa-fw fa-pencil"></i>
</a>
<article class="default article">
<div class="content">
<h3><a href="/article/e7-ad-86-e8-a8-98fail2ban-e9-98-bb-e6-93-8bsasl-e7-99-bb-e5-85-a5-e5-a4-b1-e6-95-97-e7-9a-84-e6-ad-a3-e8-a6-8f-e5-8c-96-e8-aa-9e-e6-b3-95/">[筆記]fail2ban 阻擋sasl登入失敗的正規化語法</a></h3>
<div class="meta">
<span class="date moment">2013-10-16</span>
<span class="categories">
<a href="/categories/%E5%B7%A5%E4%BD%9C%E7%AD%86%E8%A8%98">工作筆記</a>
</span>
</div>
<p>一直以來都找不到fail2ban 去阻擋SASL認證失敗的語法網路上之前看到的都是這幾篇</p>
<p><a href="http://blog.xuite.net/pippeng/blog/63675336-Fail2Ban+for+Dovecot%3E">http://blog.xuite.net/pippeng/blog/63675336-Fail2Ban+for+Dovecot%3E</a></p>
<p><a href="http://wiki.dovecot.org/HowTo/Fail2Ban">http://wiki.dovecot.org/HowTo/Fail2Ban</a></p>
<p>今天驚覺其實是我想錯了這個應該不關dovecot的事</p>
<p>應該是要找SASL認證錯誤的語法才對</p>
<p>不過dovecot預設的好像也有問題</p>
<p>所以我找到了這篇</p>
<p><a href="http://www.howtoforge.com/forums/showthread.php?t=51349">http://www.howtoforge.com/forums/showthread.php?t=51349</a></p>
<p>發現了這個語法
&gt; <pre dir="ltr">failregex = (?i): warning: [-.<em>\w]+[&lt;HOST&gt;]: SASL (?:LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed: \w</pre>
然後測試了一下
&gt; Running tests
&gt;
&gt; =============
&gt;
&gt;
&gt; Use regex file : /etc/fail2ban/filter.d/dovecot-pop3imap.conf
&gt;
&gt; Use log file : /var/log/maillog
&gt;
&gt; Results
&gt;
&gt; =======
&gt;
&gt;
&gt; Failregex
&gt;
&gt; |- Regular expressions:
&gt;
&gt; | <a href="?i">1</a>: warning: [-.</em>\w]+[&lt;HOST&gt;]: SASL (?:LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed: \w
&gt;
&gt; |
&gt;
&gt; <code>- Number of matches:
&gt;
&gt; [1] 450 match(es)
&gt;
&gt;
&gt; Ignoreregex
&gt;
&gt; |- Regular expressions:
&gt;
&gt; |
&gt;
&gt;</code>- Number of matches:
&gt;
&gt;
&gt; Summary
&gt;
&gt; =======
&gt;
&gt;
&gt; Addresses found:
&gt;
&gt; [1]
&gt;
&gt; 199.36.73.98 (Wed Oct 16 01:30:56 2013)
&gt;
&gt;
&gt; &nbsp;
&gt;
&gt;
&gt; 中間省略數百筆
&gt;
&gt;
&gt; 223.198.165.194 (Wed Oct 16 01:47:37 2013)
&gt;
&gt;
&gt; 再次省略數百筆
&gt;
&gt;
&gt; 113.59.11.87 (Wed Oct 16 03:47:28 2013)
&gt;
&gt;
&gt; 省略數百筆
&gt;
&gt;
&gt; 114.250.15.84 (Wed Oct 16 10:51:30 2013)
&gt;
&gt;
&gt; 省略數百筆
&nbsp;</p>
<p>接下來就放著讓fail2ban 去跑跑看囉!</p>
<p>&nbsp;</p>
</div>
<div class="footer no-tags">
</div>
</article>
</div>
<div id="disqus_thread"></div>
<script type="application/javascript">
var disqus_config = function () {
};
(function() {
if (["localhost", "127.0.0.1"].indexOf(window.location.hostname) != -1) {
document.getElementById('disqus_thread').innerHTML = 'Disqus comments not available by default when the website is previewed locally.';
return;
}
var d = document, s = d.createElement('script'); s.async = true;
s.src = '//' + "bilberry-hugo-theme" + '.disqus.com/embed.js';
s.setAttribute('data-timestamp', +new Date());
(d.head || d.body).appendChild(s);
})();
</script>
<noscript>Please enable JavaScript to view the <a href="https://disqus.com/?ref_noscript">comments powered by Disqus.</a></noscript>
<a href="https://disqus.com" class="dsq-brlink">comments powered by <span class="logo-disqus">Disqus</span></a>
</div>
<footer>
<div class="container">
<div class="recent-posts">
<strong>Latest posts</strong>
<ul>
<li>
<a href="/article/google-550-5-7-1-sloution/">寄信給google被退信 錯誤 550-5.7.1的解法</a>
</li>
<li>
<a href="/article/netdata-linux-system-performance-monitor-dashboard/">Netdata Linux System Performance Monitor Dashboard</a>
</li>
<li>
<a href="/article/linux-performance-monitor-dashboard-netdata-md/">Linux 底下極其詳細的System performace Monitor Dashboard - Netdata</a>
</li>
<li>
<a href="/article/syntax-test/">Syntax Test</a>
</li>
<li>
<a href="/article/psql-create-role-and-assign-priviledges/">psql create role and assign priviledges</a>
</li>
<li>
<a href="/article/study-url/">Study URL</a>
</li>
<li>
<a href="/article/rsync-time-backup/">[筆記] Linux 底下好用的備份工具 rsync-time-backup</a>
</li>
</ul>
</div>
<div class="categories">
<a href="/categories/"><strong>Categories</strong></a>
<ul>
<li>
<a href="/categories/%E6%9C%AA%E5%88%86%E9%A1%9E">未分類 (86)</a>
</li>
<li>
<a href="/categories/%E5%B7%A5%E4%BD%9C%E7%AD%86%E8%A8%98">工作筆記 (68)</a>
</li>
<li>
<a href="/categories/%E5%85%B6%E4%BB%96">其他 (46)</a>
</li>
<li>
<a href="/categories/%E7%AD%86%E8%A8%98">筆記 (30)</a>
</li>
<li>
<a href="/categories/%E5%89%AA%E5%A0%B1">剪報 (18)</a>
</li>
<li>
<a href="/categories/starting">Starting (5)</a>
</li>
<li>
<a href="/categories/blog">Blog (4)</a>
</li>
</ul>
</div>
<div class="right">
<div class="external-profiles">
<strong>Social media</strong>
<a href="https://twitter.com/TheRealLednerb" target="_blank"><i class="fa fa-twitter-adblock-proof"></i></a>
<a href="https://github.com/Lednerb" target="_blank"><i class="fa fa-github"></i></a>
</div>
<div class="languages">
<strong>Other languages</strong>
<a href="/en" class="active">en</a>
<a href="/de">de</a>
</div>
</div>
</div>
</footer>
<div class="credits">
<div class="container">
<div class="copyright">
<a href="https://github.com/Lednerb" target="_blank">
&copy;
2017
by Lednerb
</a>
</div>
<div class="author">
<a href="https://github.com/Lednerb/bilberry-hugo-theme" target="_blank">Bilberry Hugo Theme</a>
</div>
</div>
</div>
<script type="text/javascript" src="https://h.cowbay.org/js/externalDependencies.39c47e10e241eae2947b3fe21809c572.js" integrity="md5-OcR&#43;EOJB6uKUez/iGAnFcg=="></script>
<script type="text/javascript" src="https://h.cowbay.org/js/theme.ff50ae6dc1bfc220b23bf69dbb41b54e.js" integrity="md5-/1CubcG/wiCyO/adu0G1Tg=="></script>
<script>
$(".moment").each(function() {
$(this).text(
moment( $(this).text() )
.locale( "en" )
.format('LL')
);
});
$(".footnote-return sup").html("");
</script>
<script>
var client = algoliasearch("Y2C4RWMPXW", "50ea7f8c41c0ad233926e0be2b769ed1");
var index = client.initIndex("default-content");
$('#search').autocomplete({ hint: false, autoselect: true, debug: false },
[
{
source: $.fn.autocomplete.sources.hits(index, { hitsPerPage: 5, filters: 'language: en' }),
displayKey: function(suggestion) {
return suggestion.title || suggestion.author
},
templates: {
suggestion: function(suggestion) {
return "<span class='entry " + suggestion.type + "'>"
+ "<span class='title'>" + suggestion.title + "</span>"
+ "<span class='fa fa-fw " + suggestion.iconClass + "'></span>"
+ "</span>"
;
},
empty: function() {
return "<span class='empty'>Nothing found.</span>"
},
footer: function() {
return '<div class="branding">Powered by <img src="https:\/\/h.cowbay.org\/dist\/algolia-logo-light.svg" /></div>'
}
},
}
])
.on('autocomplete:selected', function(event, suggestion, dataset) {
window.location = (suggestion.url);
})
.keypress(function (event, suggestion) {
if (event.which == 13) {
window.location = (suggestion.url);
}
});
</script>
</body>
</html>
Reference in new issue View Git Blame Copy Permalink