search for: 1qaz2wsx

Hi all, If I may, one more question on this subject: I would like to create a fail2ban filer, that scans for these lines: > Jul 20 11:10:09 auth: Info: ldap(user1,60.166.35.162,<cDFXHbxUQgA8piOi>): invalid credentials (given password: password) > Jul 20 11:10:19 auth: Info: ldap(user2,61.53.66.4,<V+nyHbxU+wA9NUIE>): invalid credentials (given password: password) (as you can

I have concoted something that seems to work. And for the archives, this is it: > failregex = auth: Info: ldap\(.+,<HOST>,.+\): invalid credentials \(given password: .+ssword\) > auth: Info: ldap\(.+,<HOST>,.+\): invalid credentials \(given password: 1qaz2wsx\) > auth: Info: ldap\(.+,<HOST>,.+\): invalid credentials \(given password: 123321\) > auth: Info: ldap\(.+,<HOST>,.+\): invalid credentials \(given password: 1234567890\) > auth: Info: ldap\(.+,<HOST>,.+\): invalid credentials \(given...

...commonly accessed via passdb {} or userdb {} section in # conf.d/auth-ldap.conf.ext # Space separated list of LDAP hosts to use. host:port is allowed too. #hosts = ldap.sv.hm #uris = ldaps://ldap.sv.hm:636/ uris = ldap://ldap.sv.hm:389/ dn = cn=dovecot,ou=bindusers,dc=smuy,dc=net dnpass = 1qaz2wsx #sasl_bind = no #sasl_mech = #sasl_realm = #sasl_authz_id = # Use TLS to connect to the LDAP server. tls = yes #tls = no tls_ca_cert_file = /etc/ssl/certs/ca/signing-ca.crt tls_ca_cert_dir = /etc/ssl/certs/ca #tls_cipher_suite = # TLS cert/key is used only if LDAP server requires a...

...mething that seems to work. And for the archives, this > is it: > >> failregex = auth: Info: ldap\(.+,<HOST>,.+\): invalid credentials >> \(given password: .+ssword\) >> auth: Info: ldap\(.+,<HOST>,.+\): invalid credentials >> \(given password: 1qaz2wsx\) >> auth: Info: ldap\(.+,<HOST>,.+\): invalid credentials >> \(given password: 123321\) >> auth: Info: ldap\(.+,<HOST>,.+\): invalid credentials >> \(given password: 1234567890\) >> auth: Info: ldap\(.+,<HOST>,.+\)...

...d: 17 times 1q2w3e1q2w3e/password: 17 times 1q2w3e4r/password: 17 times a1s2d3/password: 17 times 1p2o3i4u/password: 16 times linux/password: 16 times oracle/password: 16 times 1asd2asd3asd/password: 15 times 1l2k3j4h/password: 15 times 1qaz2wsx/password: 15 times adam/password: 15 times alex/password: 15 times mnbvcxz/password: 15 times !@#$!@#$/password: 14 times !@#QWE/password: 14 times !@#qwerty/password: 14 times !QAZ at WSX#EDC/password: 14 times 1qaz2wsx3edc4rfv/password: 14 t...