Fail2ban
De Linuxmemo.
(Différences entre les versions)
| Ligne 1 : | Ligne 1 : | ||
[[Catégorie:Securite-outils]] | [[Catégorie:Securite-outils]] | ||
| + | ==Configuration== | ||
| + | [DEFAULT] | ||
| + | ignoreip = 127.0.0.1 8.8.8.8 | ||
| + | findtime = 3600 | ||
| + | bantime = 86400 | ||
| + | [ssh] | ||
| + | enabled = true | ||
| + | port = ssh,sftp | ||
| + | filter = sshd | ||
| + | logpath = /var/log/auth.log | ||
| + | maxretry = 6 | ||
| + | |||
==Status== | ==Status== | ||
sudo fail2ban-client status ssh | sudo fail2ban-client status ssh | ||
Version du 28 novembre 2016 à 14:54
Configuration
[DEFAULT] ignoreip = 127.0.0.1 8.8.8.8 findtime = 3600 bantime = 86400 [ssh] enabled = true port = ssh,sftp filter = sshd logpath = /var/log/auth.log maxretry = 6
Status
sudo fail2ban-client status ssh sudo: unable to resolve host HOSTNAME Status for the jail: ssh |- filter | |- File list: /var/log/auth.log | |- Currently failed: 1 | `- Total failed: 69 `- action |- Currently banned: 1 | `- IP list: 104.238.xxx.xxx `- Total banned: 1
