Resolved where can I find the default postfix-sasl filter?

[Jimlee3]

I modified the postfix-sasl filter in the IP Address Banning > Jails > but forgot to back it up.
is there any place where I can find the default filter used by plesk?

 

[IgorG]

# cat /etc/fail2ban/filter.d/postfix-sasl.conf

# Fail2Ban filter for postfix authentication failures
#

[INCLUDES]

before = common.conf

[Definition]

_daemon = postfix/(submission/)?smtp(d|s)

failregex = ^%(__prefix_line)swarning: [-._\w]+\[<HOST>\]: SASL ((?i)LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed(: [ A-Za-z0-9+/:]*={0,2})?\s*$

ignoreregex = authentication failed: Connection lost to authentication server$

[Init]

journalmatch = _SYSTEMD_UNIT=postfix.service


# Author: Yaroslav Halchenko

 

[Jimlee3]

# cat /etc/fail2ban/filter.d/postfix-sasl.conf

# Fail2Ban filter for postfix authentication failures
#

[INCLUDES]

before = common.conf

[Definition]

_daemon = postfix/(submission/)?smtp(d|s)

failregex = ^%(__prefix_line)swarning: [-._\w]+\[<HOST>\]: SASL ((?i)LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed(: [ A-Za-z0-9+/:]*={0,2})?\s*$

ignoreregex = authentication failed: Connection lost to authentication server$

[Init]

journalmatch = _SYSTEMD_UNIT=postfix.service


# Author: Yaroslav Halchenko

I dont remember seeing #Author
should I just copy and paste this to the filter section?

 

[IgorG]

It is default filter from Plesk default installation of fail2ban component.

 

[UFHH01]

Hi Jimlee3,

pls. be informed, that lines in configuration files which are COMMENTED with an "#" in front, are not relevant for a configuration file. They are for information and example purposes.