-
-
Notifications
You must be signed in to change notification settings - Fork 811
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fail2Ban is no longer working for Mailu 2.0 and documentation provided. #3157
Comments
Okay I can see that fail2ban has following regexp in your documentation:
Meanwhile failed authorization has following format in Mailu 2.0
For sure it won't catch this message because it expect string "AUTH not supported". I can see that in 1.9 it didn't care about the reason and the regexp was following:
and it is much better. |
That is not surprising if you have disabled rate limiting and is your problem.
Because Mailu does "better", it only accounts distinct attempts (attempts with a different passwords to avoid getting a user who has just changed his password locked-out as his MUA is retrying to login with the now-old password in the background). |
I see, thank you for quick response. It makes perfect sense for more tolerant security settings. However I fixed my configuration to be more vigiliant and for anyone who would like to have it more rigorous for Mailu 2.0, here is my confinguration: Steps:
Changes are following:
Caveat emptor: |
Hey everyone.
Couple of months ago I updated your documentation for fail2ban since there were couple of bugs there.
Now I come back, because there is something off with the fail2ban configuration in the docs for version 2.0.
First of all, I no longer get authorization errors in journal.d from mailu-front, it means that fail2ban will never catch failed attempts.
Second issue is for mailu-admin -> regexp is listening for
but it will fail to work if I have rate-limitting disabled, right?
Why not listening on failed attempts then? I can clearly see that these are being logger.
The text was updated successfully, but these errors were encountered: