Package: fail2ban Version: 0.8.6-3 The wuftpd regex ( /etc/fail2ban/filter.d/wuftpd.conf )isn't catching the log in /var/log/auth.log Here's the regex and one example of failure authenticate that it doesn't catch
failregex = wu-ftpd(?:\[\d+\])?:\s+\(pam_unix\)\s+authentication failure.* rhost=<HOST>$ Mar 22 09:35:02 SiD wu-ftpd[31278]: pam_unix(wu-ftpd:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=Quad.SiD.Cum user=root I tryed to fix the regex but it look like im too noob:)
