How do you write a fail2ban filter for failed login attempts?

Question

The log entry that appears to be written when a failed login attempt occurs in v11 using nginx as web server is this:
58.6.199.94 - - [03/Feb/2018:09:44:54 +0000] "POST /web/login HTTP/1.1" 200 3339 "http://www.domain.com/web/login" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:58.0) Gecko/20100101 Firefox/58.0"
How can I write a failregex rule in a fail2ban filter that would adequately detect that log pattern?

Bill Ennals · Accepted Answer

Just in case anyone comes across this, the links below pointed me in the right direction to get fail2ban working with Odoo 11 CE. Thanks to Odony for the improvement and instructions.
https://www.odoo.com/forum/help-1/question/fail2ban-not-detecting-failing-logins-from-odoo-11-log-134095
https://github.com/odoo/odoo/commit/86ffb549bf80b054f8bb5131c52d3e7757accb29

Related Posts	Răspunsuri	Vizualizări
Slides module not showing slides - CORS errors? nginx v11 CORS slides Community	0 dec. 17	5446
Nginx odoo 16 proxy and method not allowed 405 nginx	2 sept. 24	2509
How can I setup odoo on a path with nginx nginx	1 mai 24	3680
Nginx with Odoo configuration: host not found in upstream nginx	2 mai 24	15024
When Odoo reserves stock for Sales Orders, can it do so taking into account the Date of the Order? Rezolvat v11	1 apr. 22	9427

Această întrebare a fost marcată

Enjoying the discussion? Don't just read, join in!