Mercurial > syslog2iptables
comparison syslog2iptables.conf.top @ 69:0e736950a117 stable-1-0-16
fix post uninstall script; allow config bucket count zero to disable a pattern
| author | Carl Byington <carl@five-ten-sg.com> |
|---|---|
| date | Mon, 21 Dec 2015 07:56:18 -0800 |
| parents | d179292293eb |
| children | ae5e6bcc5017 |
comparison
equal
deleted
inserted
replaced
| 68:47db94733fe2 | 69:0e736950a117 |
|---|---|
| 78 pattern " \[(.*)\].* possible SMTP attack" { | 78 pattern " \[(.*)\].* possible SMTP attack" { |
| 79 index 1; // zero based | 79 index 1; // zero based |
| 80 bucket 100; | 80 bucket 100; |
| 81 message "sendmail authentication attack"; | 81 message "sendmail authentication attack"; |
| 82 }; | 82 }; |
| 83 pattern "rejecting commands from.* \[(.*)\] due to pre-greeting traffic" { | 83 #pattern "rejecting commands from.* \[(.*)\] due to pre-greeting traffic" { |
| 84 index 1; // zero based | 84 # index 1; // zero based |
| 85 bucket 0; // disable - iphone setup trips this; bucket 1800; | 85 # bucket 0; // disable - iphone setup trips this; bucket 1800; |
| 86 message "sendmail pre-greeting"; | 86 # message "sendmail pre-greeting"; |
| 87 }; | 87 #}; |
| 88 pattern "authentication failure: checkpass failed, .*\[(.*)\]" { | 88 pattern "authentication failure: checkpass failed, .*\[(.*)\]" { |
| 89 index 1; // zero based | 89 index 1; // zero based |
| 90 bucket 100; | 90 bucket 100; |
| 91 message "sendmail authentication failed"; | 91 message "sendmail authentication failed"; |
| 92 }; | 92 }; |