Fail2ban Handling: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| Zeile 29: | Zeile 29: | ||
</pre> | </pre> | ||
| − | =Example apache2 | + | =Example apache2= |
<pre> | <pre> | ||
[apache] | [apache] | ||
| Zeile 39: | Zeile 39: | ||
</pre> | </pre> | ||
[vsftpd] | [vsftpd] | ||
| + | |||
=Example vsftp= | =Example vsftp= | ||
<pre> | <pre> | ||
Version vom 7. November 2022, 18:36 Uhr
Install
- sudo apt install fail2ban
Nach der Installation stehen folgende Programme zur Verfügung
- fail2ban-server - der Server
- fail2ban-client - Clientprogramm zur Konfiguration und Auswertung des Servers
- fail2ban-regex - Programm zum Testen von Regular-Expressions[7]
Konfigurationsdatein
Config
- sudo cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local
Example ssh
[sshd] enabled = true port = ssh filter = sshd logpath = /var/log/auth.log maxretry = 4
Example dovecot
[dovecot] enabled = true port = pop3,pop3s,imap,imaps filter = dovecot logpath = /var/log/mail.log maxretry = 3
Example apache2
[apache] enabled = true port = http,https filter = apache-auth logpath = /var/log/apache*/*error.log maxretry = 6
[vsftpd]
Example vsftp
enabled = true port = ftp,ftp-data,ftps,ftps-data filter = vsftpd logpath = /var/log/vsftpd.log maxretry = 3