diff options
| author | Sergey G. Brester <serg.brester@sebres.de> | 2020-02-10 13:29:16 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-02-10 13:29:16 +0100 |
| commit | 774dda6105ee9e5c2107416bd2465b73bf69f25a (patch) | |
| tree | a66eb3042747b664b2564b18600370755b782fb6 | |
| parent | 34d63fccfe794030bb044ee175aef8560b41f769 (diff) | |
| download | fail2ban-774dda6105ee9e5c2107416bd2465b73bf69f25a.tar.gz | |
filter.d/postfix.conf: extended mode ddos and aggressive covering multiple disconnects without auth
| -rw-r--r-- | config/filter.d/postfix.conf | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/config/filter.d/postfix.conf b/config/filter.d/postfix.conf index 29866dfa..fb690fb0 100644 --- a/config/filter.d/postfix.conf +++ b/config/filter.d/postfix.conf @@ -37,7 +37,7 @@ mdre-rbl = ^RCPT from [^[]*\[<HOST>\]%(_port)s: [45]54 [45]\.7\.1 Service unava mdpr-more = %(mdpr-normal)s mdre-more = %(mdre-normal)s -mdpr-ddos = lost connection after(?! DATA) [A-Z]+ +mdpr-ddos = (?:lost connection after(?! DATA) [A-Z]+|disconnect(?= from \S+(?: \S+=\d+)* auth=0/(?:[1-9]|\d\d+))) mdre-ddos = ^from [^[]*\[<HOST>\]%(_port)s:? mdpr-extra = (?:%(mdpr-auth)s|%(mdpr-normal)s) |