ban hosts that cause multiple authentication errors
Fail2ban monitors log files (e.g. /var/log/auth.log,
/var/log/apache/access.log) and temporarily or persistently bans
failure-prone addresses by updating existing firewall rules. Fail2ban allows
easy specification of different actions to be taken such as to ban an
IP using iptables or hostsdeny rules, or simply to send a
notification email.
.
By default, it comes with filter expressions for various services
(sshd, apache, qmail, proftpd, sasl etc.) but configuration can be
easily extended for monitoring any other text file. All filters and
actions are given in the config files, thus fail2ban can be adopted
to be used with a variety of files and firewalls.
Attachment | Size | Date |
---|---|---|
fail2ban_0.8.6-2_all.deb | 101.63 KB | 05/08/2013 - 15:08 |
fail2ban (0.8.6-2) unstable; urgency=low
* Added pure-ftpd section to Debian's jail.conf. Thanks to Laurent
Léonard (Closes: #654412)
* Enhancement: action to use /proc/net/xt_recent and run f2b as a normal
user. Many many thanks to Zbyszek Szmek (Closes: #602016)
Recent comments