Fail2ban Handling: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(→Config) |
|||
| Zeile 10: | Zeile 10: | ||
=Example ssh= | =Example ssh= | ||
| − | + | ||
| − | [sshd] | + | [sshd] |
| − | enabled | + | enabled = true |
| − | port | + | port = ssh |
| − | filter | + | filter = sshd |
| − | logpath | + | logpath = /var/log/auth.log |
| − | maxretry = 4 | + | maxretry = 4 |
| − | |||
=Example wordpres= | =Example wordpres= | ||
Version vom 7. August 2023, 20:54 Uhr
Install
- sudo apt install fail2ban iptables
Nach der Installation stehen folgende Programme zur Verfügung
- fail2ban-server - der Server
- fail2ban-client - Clientprogramm zur Konfiguration und Auswertung des Servers
- fail2ban-regex - Programm zum Testen von Regular-Expressions[7]
Konfigurationsdatein
Example ssh
[sshd] enabled = true port = ssh filter = sshd logpath = /var/log/auth.log maxretry = 4
Example wordpres
Example dovecot
[dovecot] enabled = true port = pop3,pop3s,imap,imaps filter = dovecot logpath = /var/log/mail.log maxretry = 3
Example apache2
[apache] enabled = true port = http,https filter = apache-auth logpath = /var/log/apache*/*error.log maxretry = 6