mitchellkrogza
commented
3 years ago Thanks I will look into the generation formatting. Changes cannot be made directly to webexploits.conf as it is generated during the builds.
Closed VedranIteh closed 3 years ago
mitchellkrogza
commented
3 years ago Thanks I will look into the generation formatting. Changes cannot be made directly to webexploits.conf as it is generated during the builds.
*Testing the speed with fail2ban-regex I get significantly faster iteration of a big log file with a regex formed like this. It is searching only a part of the string after it finds http method for each entry. more memory efficient and faster banning.
I suggest future improvements in initializing 2 variables, one for referer and one for requested url as some of this lines are getting hits in referer and some in get urls. by having 2 sepparate arrays making even more efficient regexp would be possible.