wiki:fail2ban – utworzono

wpis w: Baszarek, Najnowsze odcinki | 0

Fail2ban

Konfiguracja jaili

Plik /etc/fail2ban/jail.local

[sshd] mode = aggressive
enabled = true
port = ssh
logpath = %(sshd_log)s
backend = %(sshd_backend)s
findtime = 10m
maxretry = 3
bantime = 1h
banaction = iptables-multiport

[hosting-auth] mode = agressive
enabled = true
port = http,https
backend = auto
filter = wp-auth
logpath = /var/log/httpd/strony-access
findtime = 10m
maxretry = 5
bantime = 1h
banaction = iptables-multiport

[database-auth] mode = agressive
enabled = true
port = http,https
backend = auto
filter = myadmin-auth
logpath = /var/log/httpd/strony-access
findtime = 10m
maxretry = 5
bantime = 1h
banaction = iptables-multiport

[hosting-notfound] mode = agressive
enabled = true
port = http,https
backend = auto
filter = 404notfound
logpath = /var/log/httpd/strony-access
findtime = 10m
maxretry = 20
bantime = 1h
banaction = iptables-multiport

[hosting-recidive] enabled = true
logpath = /var/log/fail2ban.log
backend = auto
filter = recidive
findtime = 1d
maxretry = 4
bantime = 366d
banaction = iptables-multiport

Konfiguracja filtrów

Plik /etc/fail2ban/filter.d/

# —————————————————–
# Logowanie do witryn obejmujace:
# – htpasswd,
# – logowanie do Więcej…

Oryginalny wpis: wiki:fail2ban – utworzono