I am trying to get fail2ban to ban password mismatch from apache but the logs are incompatible. i.e.
“[Tue Dec 16 15:49:02 2008] [error] [client 0.0.0.0] user maint: authentication failure for “/admin”: Password Mismatch”
“The default format does not work with Fail2Ban because the pattern Fail2Ban uses that would match this format has a beginning of line character (^), and Asterisk puts its date/time inside of . However the other formats that Fail2Ban supports do not have this character and can be used with Asterisk”
I am using CentOS 4.7 with FreePBX 188.8.131.52
I was wandering if I could duplicate the error_log into another file and change the format? I don’t know how this would be done as I am reasonably new to linux and asterisk. Is there another way?
As far as fail2ban goes though I would reccommend it to anyone because all of the other jails are functioning well (because they use different logs in the correct format)
Any assistance would be greatly appreciated.
Thank you in advance.