Fail2ban: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
(One intermediate revision by the same user not shown) | |||
Line 10: | Line 10: | ||
telegram | telegram | ||
[apache-overflows] | [apache-overflows] | ||
enabled = true | |||
port = http,https | |||
filter = apache-overflows | |||
logpath = /var/log/apache*/*error.log | |||
maxretry = 2 | |||
enabled = true | [apache-badbots] | ||
port = http,https | enabled = true | ||
filter = apache- | port = http,https | ||
logpath = /var/log/apache*/*error.log | filter = apache-badbots | ||
maxretry = 2 | logpath = /var/log/apache*/*error.log | ||
maxretry = 2 | |||
[apache- | [apache-nohome] | ||
enabled = true | |||
port = http,https | |||
filter = apache-nohome | |||
logpath = /var/log/apache*/*error.log | |||
maxretry = 2 | |||
[php-url-fopen] | |||
enabled = true | |||
port = http,https | |||
filter = php-url-fopen | |||
logpath = /var/log/apache*/*access.log | |||
[php-url-fopen] | |||
enabled = true | |||
port = http,https | |||
filter = php-url-fopen | |||
logpath = /var/log/apache*/*access.log | |||
https://www.digitalocean.com/community/tutorials/how-to-protect-an-apache-server-with-fail2ban-on-ubuntu-14-04 | https://www.digitalocean.com/community/tutorials/how-to-protect-an-apache-server-with-fail2ban-on-ubuntu-14-04 |
Latest revision as of 06:51, 25 June 2024
jail.local
[sshd] enabled = true port = ssh logpath = %(sshd_log)s backend = %(sshd_backend)s maxretry = 10 bantime = -1 action = iptables[name=SSH, port=22, protocol=tcp] telegram
[apache-overflows] enabled = true port = http,https filter = apache-overflows logpath = /var/log/apache*/*error.log maxretry = 2
[apache-badbots] enabled = true port = http,https filter = apache-badbots logpath = /var/log/apache*/*error.log maxretry = 2
[apache-nohome] enabled = true port = http,https filter = apache-nohome logpath = /var/log/apache*/*error.log maxretry = 2
[php-url-fopen] enabled = true port = http,https filter = php-url-fopen logpath = /var/log/apache*/*access.log