name : lighttpd-auth.conf # Fail2Ban filter to match wrong passwords as notified by lighttpd's auth Module # [Definition] failregex = ^\s*(?:: )?\(?(?:http|mod)_auth\.c\.\d+\) (?:password doesn\'t match for (?:\S+|.*?) username:\s+<F-USER>(?:\S+|.*?)</F-USER>\s*|digest: auth failed(?: for\s+<F-ALT_USER>(?:\S+|.*?)</F-ALT_USER>\s*)?: (?:wrong password|uri mismatch \([^\)]*\))|get_password failed),? IP: <HOST>\s*$ ignoreregex = # Author: Francois Boulogne <fboulogne@april.org>