I'll answer my own question. I forgot about xarf-login-attack, which
does make use of either logfiles or the systemd backend.
On Thu, 2021-01-28 at 17:13 -0500, Daniel L. Srebnick via Fail2ban-
users wrote:
> Hello list:
>
> I am familiar with how to implement a complain action where there is
>
On 1/27/21 5:02 AM, Richard Muhler via Fail2ban-users wrote:
> 2021-01-27 12:52:01=!=relay: authentication failed with client
> 1/ssl.weechat/XX.XXX.XXX.X
> 2021-01-27 12:52:09=!=relay: authentication failed with client
> 1/ssl.weechat/XX.XXX.XXX.X
> 2021-01-27 12:53:57relay: client 1/ssl.weechat/
