• Dear Pleskians! The Plesk Forum will be undergoing scheduled maintenance on Monday, 7th of July, at 9:00 AM UTC. The expected maintenance window is 2 hours.
    Thank you in advance for your patience and understanding on the matter.

Issue Fail2ban parameters

X

xemorytr

Basic Pleskian
Server operating system version
Ubuntu 22.04.2 LTS
Plesk version and microupdate number
Version 18.0.50 Update #2
Hello everyone ,
I need information about fail2ban parameters and plesk-postfix to improve heem and how it can be done.

I think that if the feature I mentioned comes in the new update, it may be a better solution for everyone.

Invalid password for .+ by ([0-9a-f\.:]+)
Invalid password by ([0-9a-f\.:]+)
warning: .*\[([0-9a-f\.:]+)\]: SASL .+ authentication failed: (?!.*Connection lost to authentication server).+
warning: non-SMTP command from .*\[([0-9a-f\.:]+)]:.+
NOQUEUE: reject: RCPT from \[([0-9a-f\.:]+)].+Protocol error.+
-login: Disconnected.+ \(auth failed, .+\): user=.*, method=.+, rip=([0-9a-f\.:]+),
-login: Aborted login.+ \(auth failed .+\): user=.+, rip=([0-9a-f\.:]+), lip.+
-login: Aborted login.+ \(tried to use disallowed .+\): user=.+, rip=([0-9a-f\.:]+), lip.+
webmail.+ Login from '([0-9a-f\.:]+)' for user .+ might not have worked
([0-9a-f\.:]+) "GET \/webmail\/.* HTTP.+" 403 .+

These rules really need to be.

What steps can be followed for this?
Thank you.
 
You must log in or register to reply here.

Similar threads

wakabayashi
Resolved Fail2Ban - Postfix not working for SASL (bug?)
Replies
4
Views
2K
mizar
mizar
C
Question Plesk Obsidian 18.0.65 Update 2 imap-login: Disconnected: Connection closed (auth failed
Replies
3
Views
1K
Compy
C
Dork
Question Watchdog problem
Replies
3
Views
1K
mow
M
M
Issue Postfix - warning: connect to transport private/plesk-domain.org.uk-123.145.167.189-: Connection refused
Replies
8
Views
1K
MHC_1
M
Polli
Issue Mails only possible with a wildcard certificate
Replies
5
Views
1K
Polli
Polli
Back
Top