Fail2ban: Difference between revisions

From Server STB
Jump to navigation Jump to search
No edit summary
No edit summary
 
(One intermediate revision by the same user not shown)
Line 10: Line 10:
           telegram
           telegram


[apache-overflows]
[apache-overflows]
enabled  = true
port    = http,https
filter  = apache-overflows
logpath  = /var/log/apache*/*error.log
maxretry = 2


enabled  = true
[apache-badbots]
port    = http,https
enabled  = true
filter  = apache-overflows
port    = http,https
logpath  = /var/log/apache*/*error.log
filter  = apache-badbots
maxretry = 2
logpath  = /var/log/apache*/*error.log
maxretry = 2


[apache-badbots]
[apache-nohome]
enabled  = true
port    = http,https
filter  = apache-nohome
logpath  = /var/log/apache*/*error.log
maxretry = 2


enabled  = true
  [php-url-fopen]
port    = http,https
enabled = true
filter  = apache-badbots
port    = http,https
logpath = /var/log/apache*/*error.log
filter  = php-url-fopen
maxretry = 2
logpath = /var/log/apache*/*access.log
 
[apache-nohome]
 
enabled  = true
port    = http,https
filter  = apache-nohome
logpath  = /var/log/apache*/*error.log
maxretry = 2
 
[php-url-fopen]
 
enabled = true
port    = http,https
filter  = php-url-fopen
logpath = /var/log/apache*/*access.log




https://www.digitalocean.com/community/tutorials/how-to-protect-an-apache-server-with-fail2ban-on-ubuntu-14-04
https://www.digitalocean.com/community/tutorials/how-to-protect-an-apache-server-with-fail2ban-on-ubuntu-14-04

Latest revision as of 06:51, 25 June 2024

jail.local 

[sshd]
enabled = true
port    = ssh
logpath = %(sshd_log)s
backend = %(sshd_backend)s
maxretry = 10
bantime = -1
action  = iptables[name=SSH, port=22, protocol=tcp]
         telegram

[apache-overflows]
enabled  = true
port     = http,https
filter   = apache-overflows
logpath  = /var/log/apache*/*error.log
maxretry = 2

[apache-badbots]
enabled  = true
port     = http,https
filter   = apache-badbots
logpath  = /var/log/apache*/*error.log
maxretry = 2

[apache-nohome]
enabled  = true
port     = http,https
filter   = apache-nohome
logpath  = /var/log/apache*/*error.log
maxretry = 2

[php-url-fopen]
enabled = true
port    = http,https
filter  = php-url-fopen
logpath = /var/log/apache*/*access.log


https://www.digitalocean.com/community/tutorials/how-to-protect-an-apache-server-with-fail2ban-on-ubuntu-14-04

Retrieved from "http://wiki.serverstb.com/index.php?title=Fail2ban&oldid=768"