airflame airflame 22.01.2019, 11:36:47 0 Wiecie może jak powstrzymać ten atak przez fail2ban?postfix/smtpd[28660]: warning: unknown[xxx.xxx.xxx.xxx]: SASL Login authentication failed: UGFzc3dvcmQ6Mój config:[pureftpd]enabled = trueport = ftpfilter = pureftpdlogpath = /var/log/syslogbantime = -1maxretry = 2[pure-ftpd]enabled = trueport = ftp,ftp-data,ftps,ftps-datafilter = pure-ftpdlogpath = /var/log/syslogbantime = -1maxretry = 2[postfix-sasl]enabled = trueport = smtp,ssmtp,imap2,imap3,imapsfilter = postfix-sasllogpath = /var/log/mail.logbantime = -1maxretry = 1[ssh]enabled = trueport = sshfilter = sshdlogpath = /var/log/auth.logbantime = -1maxretry = 2[postfix]enabled = trueport = smtp,ssmtpfilter = postfixlogpath = /var/log/mail.logbantime = -1maxretry = 1[dovecot-pop3imap]enabled = truefilter = dovecot-pop3imapaction = iptables-multiport[name=dovecot-pop3imap, port="pop3,imap", protocol=tcp]logpath = /var/log/mail.logbantime = -1maxretry = 1#linux #fail2ban #flood #ssh #ban #debian
szpoq szpoq 22.01.2019, 22:23:59 via Android 0 @airflame spoko, jak będziesz potrzebował fachowej porady to pisz! (⌐ ͡■ ͜ʖ ͡■)Cieszę się że mogłem pomóc
postfix/smtpd[28660]: warning: unknown[xxx.xxx.xxx.xxx]: SASL Login authentication failed: UGFzc3dvcmQ6
Mój config:
[pureftpd]
enabled = true
port = ftp
filter = pureftpd
logpath = /var/log/syslog
bantime = -1
maxretry = 2
[pure-ftpd]
enabled = true
port = ftp,ftp-data,ftps,ftps-data
filter = pure-ftpd
logpath = /var/log/syslog
bantime = -1
maxretry = 2
[postfix-sasl]
enabled = true
port = smtp,ssmtp,imap2,imap3,imaps
filter = postfix-sasl
logpath = /var/log/mail.log
bantime = -1
maxretry = 1
[ssh]
enabled = true
port = ssh
filter = sshd
logpath = /var/log/auth.log
bantime = -1
maxretry = 2
[postfix]
enabled = true
port = smtp,ssmtp
filter = postfix
logpath = /var/log/mail.log
bantime = -1
maxretry = 1
[dovecot-pop3imap]
enabled = true
filter = dovecot-pop3imap
action = iptables-multiport[name=dovecot-pop3imap, port="pop3,imap", protocol=tcp]
logpath = /var/log/mail.log
bantime = -1
maxretry = 1
#linux #fail2ban #flood #ssh #ban #debian
Cieszę się że mogłem pomóc