5

fail2ban question

view full story
linux-howto

http://forums.cpanel.net – hello people. i am having a nasty problem with china and their incessant need of brute forcing into my server. i get tons of entries like this one inside the exim_mainlog 2012-07-28 21:58:29 courier_login authenticator failed for (do) [<IP_ADDRESS>]:<PORT>: 535 Incorrect authentication data (set_id=<EMAIL@HOST[email protected]>) <IP_ADDRESS> and <[email protected]> as well as <PORT> have been redacted for the purpose of this report. fail2ban does not seem to be able to block these user and keep them out, despite it being properly configured. I checked my (HowTos)