Gecko [ www.thearyasamaj.org ]

Name	Size	Permission
ignorecommands	[ DIR ]	drwxr-xr-x
3proxy.conf	467 B	-rw-r--r--
apache-auth.conf	3.15 KB	-rw-r--r--
apache-badbots.conf	2.76 KB	-rw-r--r--
apache-botsearch.conf	1.24 KB	-rw-r--r--
apache-common.conf	1.58 KB	-rw-r--r--
apache-fakegooglebot.conf	324 B	-rw-r--r--
apache-modsecurity.conf	511 B	-rw-r--r--
apache-nohome.conf	596 B	-rw-r--r--
apache-noscript.conf	1.22 KB	-rw-r--r--
apache-overflows.conf	2.13 KB	-rw-r--r--
apache-pass.conf	362 B	-rw-r--r--
apache-shellshock.conf	1020 B	-rw-r--r--
assp.conf	3.41 KB	-rw-r--r--
asterisk.conf	2.31 KB	-rw-r--r--
bitwarden.conf	427 B	-rw-r--r--
botsearch-common.conf	522 B	-rw-r--r--
centreon.conf	307 B	-rw-r--r--
common.conf	2.71 KB	-rw-r--r--
counter-strike.conf	244 B	-rw-r--r--
courier-auth.conf	429 B	-rw-r--r--
courier-smtp.conf	512 B	-rw-r--r--
cyrus-imap.conf	444 B	-rw-r--r--
directadmin.conf	338 B	-rw-r--r--
domino-smtp.conf	2.06 KB	-rw-r--r--
dovecot.conf	2.4 KB	-rw-r--r--
dropbear.conf	1.69 KB	-rw-r--r--
drupal-auth.conf	557 B	-rw-r--r--
ejabberd-auth.conf	1.54 KB	-rw-r--r--
exim-common.conf	516 B	-rw-r--r--
exim-spam.conf	2.11 KB	-rw-r--r--
exim.conf	2.81 KB	-rw-r--r--
freeswitch.conf	1.88 KB	-rw-r--r--
froxlor-auth.conf	1.18 KB	-rw-r--r--
gitlab.conf	236 B	-rw-r--r--
grafana.conf	388 B	-rw-r--r--
groupoffice.conf	236 B	-rw-r--r--
gssftpd.conf	322 B	-rw-r--r--
guacamole.conf	1.41 KB	-rw-r--r--
haproxy-http-auth.conf	1.14 KB	-rw-r--r--
horde.conf	404 B	-rw-r--r--
kerio.conf	938 B	-rw-r--r--
lighttpd-auth.conf	333 B	-rw-r--r--
mongodb-auth.conf	2.23 KB	-rw-r--r--
monit.conf	787 B	-rw-r--r--
murmur.conf	927 B	-rw-r--r--
mysqld-auth.conf	953 B	-rw-r--r--
nagios.conf	400 B	-rw-r--r--
named-refused.conf	1.46 KB	-rw-r--r--
nginx-botsearch.conf	681 B	-rw-r--r--
nginx-http-auth.conf	485 B	-rw-r--r--
nginx-limit-req.conf	1.42 KB	-rw-r--r--
nsd.conf	760 B	-rw-r--r--
openhab.conf	452 B	-rw-r--r--
openwebmail.conf	495 B	-rw-r--r--
oracleims.conf	1.89 KB	-rw-r--r--
pam-generic.conf	947 B	-rw-r--r--
perdition.conf	568 B	-rw-r--r--
php-url-fopen.conf	891 B	-rw-r--r--
phpmyadmin-syslog.conf	278 B	-rw-r--r--
portsentry.conf	242 B	-rw-r--r--
postfix.conf	3.09 KB	-rw-r--r--
proftpd.conf	1.14 KB	-rw-r--r--
pure-ftpd.conf	2.35 KB	-rw-r--r--
qmail.conf	795 B	-rw-r--r--
recidive.conf	1.34 KB	-rw-r--r--
roundcube-auth.conf	1.46 KB	-rw-r--r--
screensharingd.conf	821 B	-rw-r--r--
selinux-common.conf	538 B	-rw-r--r--
selinux-ssh.conf	570 B	-rw-r--r--
sendmail-auth.conf	776 B	-rw-r--r--
sendmail-reject.conf	2.88 KB	-rw-r--r--
sieve.conf	371 B	-rw-r--r--
slapd.conf	706 B	-rw-r--r--
softethervpn.conf	451 B	-rw-r--r--
sogo-auth.conf	722 B	-rw-r--r--
solid-pop3d.conf	1.07 KB	-rw-r--r--
squid.conf	260 B	-rw-r--r--
squirrelmail.conf	191 B	-rw-r--r--
sshd.conf	7.34 KB	-rw-r--r--
stunnel.conf	363 B	-rw-r--r--
suhosin.conf	649 B	-rw-r--r--
tine20.conf	890 B	-rw-r--r--
traefik-auth.conf	2.33 KB	-rw-r--r--
uwimap-auth.conf	374 B	-rw-r--r--
vsftpd.conf	637 B	-rw-r--r--
webmin-auth.conf	444 B	-rw-r--r--
wuftpd.conf	520 B	-rw-r--r--
xinetd-fail.conf	521 B	-rw-r--r--
znc-adminlog.conf	912 B	-rw-r--r--
zoneminder.conf	524 B	-rw-r--r--

Name

Size

Permission

Action

ignorecommands

[ DIR ]

drwxr-xr-x

3proxy.conf

467 B

-rw-r--r--

apache-auth.conf

3.15 KB

-rw-r--r--

apache-badbots.conf

2.76 KB

-rw-r--r--

apache-botsearch.conf

1.24 KB

-rw-r--r--

apache-common.conf

1.58 KB

-rw-r--r--

apache-fakegooglebot.conf

324 B

-rw-r--r--

apache-modsecurity.conf

511 B

-rw-r--r--

apache-nohome.conf

596 B

-rw-r--r--

apache-noscript.conf

1.22 KB

-rw-r--r--

apache-overflows.conf

2.13 KB

-rw-r--r--

apache-pass.conf

362 B

-rw-r--r--

apache-shellshock.conf

1020 B

-rw-r--r--

assp.conf

3.41 KB

-rw-r--r--

asterisk.conf

2.31 KB

-rw-r--r--

bitwarden.conf

427 B

-rw-r--r--

botsearch-common.conf

522 B

-rw-r--r--

centreon.conf

307 B

-rw-r--r--

common.conf

2.71 KB

-rw-r--r--

counter-strike.conf

244 B

-rw-r--r--

courier-auth.conf

429 B

-rw-r--r--

courier-smtp.conf

512 B

-rw-r--r--

cyrus-imap.conf

444 B

-rw-r--r--

directadmin.conf

338 B

-rw-r--r--

domino-smtp.conf

2.06 KB

-rw-r--r--

dovecot.conf

2.4 KB

-rw-r--r--

dropbear.conf

1.69 KB

-rw-r--r--

drupal-auth.conf

557 B

-rw-r--r--

ejabberd-auth.conf

1.54 KB

-rw-r--r--

exim-common.conf

516 B

-rw-r--r--

exim-spam.conf

2.11 KB

-rw-r--r--

exim.conf

2.81 KB

-rw-r--r--

freeswitch.conf

1.88 KB

-rw-r--r--

froxlor-auth.conf

1.18 KB

-rw-r--r--

gitlab.conf

236 B

-rw-r--r--

grafana.conf

388 B

-rw-r--r--

groupoffice.conf

236 B

-rw-r--r--

gssftpd.conf

322 B

-rw-r--r--

guacamole.conf

1.41 KB

-rw-r--r--

haproxy-http-auth.conf

1.14 KB

-rw-r--r--

horde.conf

404 B

-rw-r--r--

kerio.conf

938 B

-rw-r--r--

lighttpd-auth.conf

333 B

-rw-r--r--

mongodb-auth.conf

2.23 KB

-rw-r--r--

monit.conf

787 B

-rw-r--r--

murmur.conf

927 B

-rw-r--r--

mysqld-auth.conf

953 B

-rw-r--r--

nagios.conf

400 B

-rw-r--r--

named-refused.conf

1.46 KB

-rw-r--r--

nginx-botsearch.conf

681 B

-rw-r--r--

nginx-http-auth.conf

485 B

-rw-r--r--

nginx-limit-req.conf

1.42 KB

-rw-r--r--

nsd.conf

760 B

-rw-r--r--

openhab.conf

452 B

-rw-r--r--

openwebmail.conf

495 B

-rw-r--r--

oracleims.conf

1.89 KB

-rw-r--r--

pam-generic.conf

947 B

-rw-r--r--

perdition.conf

568 B

-rw-r--r--

php-url-fopen.conf

891 B

-rw-r--r--

phpmyadmin-syslog.conf

278 B

-rw-r--r--

portsentry.conf

242 B

-rw-r--r--

postfix.conf

3.09 KB

-rw-r--r--

proftpd.conf

1.14 KB

-rw-r--r--

pure-ftpd.conf

2.35 KB

-rw-r--r--

qmail.conf

795 B

-rw-r--r--

recidive.conf

1.34 KB

-rw-r--r--

roundcube-auth.conf

1.46 KB

-rw-r--r--

screensharingd.conf

821 B

-rw-r--r--

selinux-common.conf

538 B

-rw-r--r--

selinux-ssh.conf

570 B

-rw-r--r--

sendmail-auth.conf

776 B

-rw-r--r--

sendmail-reject.conf

2.88 KB

-rw-r--r--

sieve.conf

371 B

-rw-r--r--

slapd.conf

706 B

-rw-r--r--

softethervpn.conf

451 B

-rw-r--r--

sogo-auth.conf

722 B

-rw-r--r--

solid-pop3d.conf

1.07 KB

-rw-r--r--

squid.conf

260 B

-rw-r--r--

squirrelmail.conf

191 B

-rw-r--r--

sshd.conf

7.34 KB

-rw-r--r--

stunnel.conf

363 B

-rw-r--r--

suhosin.conf

649 B

-rw-r--r--

tine20.conf

890 B

-rw-r--r--

traefik-auth.conf

2.33 KB

-rw-r--r--

uwimap-auth.conf

374 B

-rw-r--r--

vsftpd.conf

637 B

-rw-r--r--

webmin-auth.conf

444 B

-rw-r--r--

wuftpd.conf

520 B

-rw-r--r--

xinetd-fail.conf

521 B

-rw-r--r--

znc-adminlog.conf

912 B

-rw-r--r--

zoneminder.conf

524 B

-rw-r--r--

Code Editor : postfix.conf

# Fail2Ban filter for selected Postfix SMTP rejections
#
#

[INCLUDES]

# Read common prefixes. If any customizations available -- read them from
# common.local
before = common.conf

[Definition]

_daemon = postfix(-\w+)?/\w+(?:/smtp[ds])?
_port = (?::\d+)?

prefregex = ^%(__prefix_line)s<mdpr-<mode>> <F-CONTENT>.+</F-CONTENT>$

mdpr-normal = (?:\w+: reject:|(?:improper command pipelining|too many errors) after \S+)
mdre-normal=^RCPT from [^[]*\[<HOST>\]%(_port)s: 55[04] 5\.7\.1\s
            ^RCPT from [^[]*\[<HOST>\]%(_port)s: 45[04] 4\.7\.\d+ (?:Service unavailable\b|Client host rejected: cannot find your (reverse )?hostname\b)
            ^RCPT from [^[]*\[<HOST>\]%(_port)s: 450 4\.7\.\d+ (<[^>]*>)?: Helo command rejected: Host not found\b
            ^EHLO from [^[]*\[<HOST>\]%(_port)s: 504 5\.5\.\d+ (<[^>]*>)?: Helo command rejected: need fully-qualified hostname\b
            ^(RCPT|VRFY) from [^[]*\[<HOST>\]%(_port)s: 550 5\.1\.1\s
            ^RCPT from [^[]*\[<HOST>\]%(_port)s: 450 4\.1\.\d+ (<[^>]*>)?: Sender address rejected: Domain not found\b
            ^from [^[]*\[<HOST>\]%(_port)s:?

mdpr-auth = warning:
mdre-auth = ^[^[]*\[<HOST>\]%(_port)s: SASL ((?i)LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed:(?! Connection lost to authentication server| Invalid authentication mechanism)
mdre-auth2= ^[^[]*\[<HOST>\]%(_port)s: SASL ((?i)LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed:(?! Connection lost to authentication server)
# todo: check/remove "Invalid authentication mechanism" from ignore list, if gh-1243 will get finished (see gh-1297).

# Mode "rbl" currently included in mode "normal", but if needed for jail "postfix-rbl" only:
mdpr-rbl = %(mdpr-normal)s
mdre-rbl  = ^RCPT from [^[]*\[<HOST>\]%(_port)s: [45]54 [45]\.7\.1 Service unavailable; Client host \[\S+\] blocked\b

# Mode "rbl" currently included in mode "normal" (within 1st rule)
mdpr-more = %(mdpr-normal)s
mdre-more = %(mdre-normal)s

mdpr-ddos = (?:lost connection after(?! DATA) [A-Z]+|disconnect(?= from \S+(?: \S+=\d+)* auth=0/(?:[1-9]|\d\d+)))
mdre-ddos = ^from [^[]*\[<HOST>\]%(_port)s:?

mdpr-extra = (?:%(mdpr-auth)s|%(mdpr-normal)s)
mdre-extra = %(mdre-auth)s
            %(mdre-normal)s

mdpr-aggressive = (?:%(mdpr-auth)s|%(mdpr-normal)s|%(mdpr-ddos)s)
mdre-aggressive = %(mdre-auth2)s
                  %(mdre-normal)s

mdpr-errors = too many errors after \S+
mdre-errors = ^from [^[]*\[<HOST>\]%(_port)s$

failregex = <mdre-<mode>>

# Parameter "mode": more (default combines normal and rbl), auth, normal, rbl, ddos, extra or aggressive (combines all)
# Usage example (for jail.local):
#   [postfix]
#   mode = aggressive
#
#   # or another jail (rewrite filter parameters of jail):
#   [postfix-rbl]
#   filter = postfix[mode=rbl]
#
#   # jail to match "too many errors", related postconf `smtpd_hard_error_limit`:
#   # (normally included in other modes (normal, more, extra, aggressive), but this jail'd allow to ban on the first message)
#   [postfix-many-errors]
#   filter = postfix[mode=errors]
#   maxretry = 1
#
mode = more

ignoreregex =

[Init]

journalmatch = _SYSTEMD_UNIT=postfix.service

# Author: Cyril Jaquier

${this.title}

Code Editor : postfix.conf