mailinabox/conf/fail2ban/nginx.conf

# fail2ban filter configuration for nginx


[Definition]


failregex = ^ \[error\] \d+#\d+: \*\d+ user "\S+":? (password mismatch|was not found in ".*"), client: <HOST>, server: \S+, request: "\S+ \S+ HTTP/\d+\.\d+", host: "\S+"\s*$
	    ^ \[error\] \d+#\d+: \*\d+ no user/password was provided for basic authentication, client: <HOST>, server: \S+, request: "\S+ \S+ HTTP/\d+\.\d+", host: "\S+"\s*$

ignoreregex = 

# DEV NOTES:
# Based on samples in https://github.com/fail2ban/fail2ban/pull/43/files
# Extensive search of all nginx auth failures not done yet.
# 
# Author: Daniel Black
# Second entry done by Alon Ganon
added Fail2ban filters from #866, #767, and #798 on main branch 2016-06-26 14:57:59 +00:00			`# fail2ban filter configuration for nginx`


			`[Definition]`


			`failregex = ^ \[error\] \d+#\d+: \\d+ user "\S+":? (password mismatch\|was not found in "."), client: <HOST>, server: \S+, request: "\S+ \S+ HTTP/\d+\.\d+", host: "\S+"\s*$`
			`^ \[error\] \d+#\d+: \\d+ no user/password was provided for basic authentication, client: <HOST>, server: \S+, request: "\S+ \S+ HTTP/\d+\.\d+", host: "\S+"\s$`

			`ignoreregex =`

			`# DEV NOTES:`
			`# Based on samples in https://github.com/fail2ban/fail2ban/pull/43/files`
			`# Extensive search of all nginx auth failures not done yet.`
			`#`
			`# Author: Daniel Black`
			`# Second entry done by Alon Ganon`