Not matching Cyrus IMAP on FreeBSD

Issue #98 resolved
Daniel O'Connor created an issue

Hi, I have SSHGuard v2.1 on FreeBSD 11 and it isn't matching lines like..

Aug 26 11:44:49 midget imap[96865]: badlogin: [118.144.8.198] plain [SASL(-13): authentication failure: Password verification failed]

I'm not sure why it's different to what is expected (ie badlogin: XYZ [6.6.6.0] XYZ SASL XYZ checkpass failed)

Comments (6)

  1. Kevin Zheng
    • changed status to open

    I couldn't reproduce this using v2.1.0 on FreeBSD 11:

    $ uname -v
    FreeBSD 11.2-RELEASE-p3 #0: Thu Sep  6 07:14:16 UTC 2018     root@amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC
    
    $ git describe    
    v2.1.0
    
    $ ./sshg-parser      
    Aug 26 11:44:49 midget imap[96865]: badlogin: [118.144.8.198] plain [SASL(-13): authentication failure: Password verification failed]
    220 118.144.8.198 4 10
    

    SSHGuard correctly reports this as detected.

  2. Log in to comment