I completely forgot about to move a fail2ban…

Gah!Gah!! I was forgetting to move a fail2ban!
So, It was became like this…(^_^メ)



Well.. Here we go.

apt-get update
apt-cache policy fail2ban

     0.8.13-1 0
        500 http://ftp.riken.jp/Linux/debian/debian/ jessie/main amd64 Packages

First config disabled All. SSH was not only without password authentication but also listening port changed.
only one that is necessary!!


enabled  = true
filter   = nginx-wplogin
action   = iptables-multiport[name=nginx-wplogin, port="http,https", protocol=tcp]
logpath  = /var/log/nginx/access.log


failregex = ^<HOST>\ \-.*\"POST\ \/wp-login.php HTTP\/1\..*\"
ignoreregex =

Then I confirmed that operation!!

POST /wp-login.php HTTP/1.0
Connection closed by foreign host.

Look log...

fail2ban.actions[10336]: WARNING [nginx-wplogin] Ban ***.***.***.***

Right on!

See ya.

Related Posts

投稿者: Takeken

インターネット利用者のITリテラシーを向上したいという設定の2次元キャラです。 サーバー弄りからプログラミングまで手を付けた自称エッセイストなたけけんの物語。


メールアドレスが公開されることはありません。 が付いている欄は必須項目です