1 Topic by alex42

  • alex42
  • Member
  • Offline
  • Registered: 2013-08-26
  • Posts: 145

Topic: Securing outgoing OpenLDAP with Fail2ban

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): 0.9.9
- Deployed with iRedMail Easy or the downloadable installer? Installer
- Linux/BSD distribution name and version: Ubuntu 18.04
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): LDAP
- Web server (Apache or Nginx): Nginx
- Manage mail accounts with iRedAdmin-Pro? No
====

Hi,

I began to use OpenLDAP as Global LDAP Address Book in Thunderbird as described in the wiki:

https://docs.iredmail.org/configure.thu … dress-book

I had to open the port for outgoing LDAP-traffic. Now I would like to secure this with Fail2ban. Can someone help me to archive this?

Thanks in advance!

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by alex42

  • alex42
  • Member
  • Offline
  • Registered: 2013-08-26
  • Posts: 145

Re: Securing outgoing OpenLDAP with Fail2ban

In which log can I find error messages about unsuccessful login attempts. Maybe I can write an own regex if I find the error messages.

3 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,788

Re: Securing outgoing OpenLDAP with Fail2ban

- OpenLDAP should log to /var/log/openldap.log by default, but it’s configured to log nothing in its config file (/etc/ldap/slapd.conf, parameter “loglevel”). You may need to increase log level to get the error log.

- fail2ban doesn’t have filter rules for OpenLDAP, so you have to define your own rule(s). https://github.com/fail2ban/fail2ban/tr … /filter.d/