-
I couldn't find it in the documentation on how to read logs (in my case authelia logs) to block IP addresses.
What is the equivalent of jail.d, action.d and filter.d `fail2ban` directories in this pl…
smshr updated
3 years ago
-
|Wazuh version|Component|Install type|Install method|Platform|
|---|---|---|---|---|
Wazuh Server v4.7.0-1 on ubuntu 22.04
| X.Y.Z-rev | Wazuh component | Manager/Agent | Packages/Sources | OS vers…
-
#### /etc/fail2ban/filter.d/matrix-synapse.conf
```
[Definition]
failregex = .*synapse.access.http.8008 - .* INFO - POST-[0-9]{1,10} - - 8008 - {None} Processed request:.* 52B 403 "POST \/_matri…
-
Hi,
pf doesn't know "proto all". From fail2ban/action.d/pf.conf:
```
actionstart` = echo "table persist counters" | -f-
port=""; if [ "$port" != "" ] && case "$port" in \{*) fa…
-
Hello @chesio !
You could steal 30 checks from this HTTP analyzer https://github.com/szepeviktor/wordpress-fail2ban/tree/master/block-bad-requests
and 30 more from this **MU plugin** https://githu…
-
not sure if this filter is relevant anymore, but at least the reges should contain https as well:
`failregex = ^ -.*"(GET|POST).*\?.*\=https?\:\/\/.* HTTP\/.*$
`
-
First of all thank you very much for the configuration.
It is exactly what i was missing.
Unfortunately i have an error when reloading fail2ban
`+ 95 7FC5BEC2B700 fail2ban ER…
-
Hey,
very great tool is fail2ban but an feature be very nice.
please add "actionfound" to fail2ban. for different usage it may be very nice.
greetings
sam
-
I am using `ansible-role-security` with `ansible-role-firewall`. There seems to be a problem with the firewall.service script which clobbers fail2ban rules in the firewall after a `systemctl restart f…
-
While testing, I was able to consistently lock myself out of the Ubuntu 16.04 cloud images I was testing locally today. My guess at what went wrong is that ansible did not correctly whitelist me. When…