github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity
Browse Source

Block brute-force attempts against the Monit gui

pull/697/head
Jason Martin 11 years ago
parent
9d6fc6eca2
commit
7d112430ca
2 changed files with 24 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 18
      config/filter.d/monit.conf
  2. 6
      config/jail.conf

18
config/filter.d/monit.conf
Unescape View File

@ -0,0 +1,18 @@
# Fail2Ban filter for monit.conf, looks for failed access attempts
#
#
[INCLUDES]
# Read common prefixes. If any customizations available -- read them from
# common.local
before = common.conf
[Definition]
# Samples:
# [PDT Apr 16 20:59:11] error : Warning: Client '1.2.3.4' supplied unknown user 'foo' accessing monit httpd
# [PDT Apr 16 20:59:33] error : Warning: Client '1.2.3.4' supplied wrong password for user 'admin' accessing monit httpd
failregex = Warning: Client '<HOST>' supplied
ignoreregex =

6
config/jail.conf
Unescape View File

@ -366,6 +366,12 @@ maxretry = 5
port = http,https
logpath = /var/log/tomcat*/catalina.out
[monit]
#Ban clients brute-forcing the monit gui login
filter = monit
port = 2812
logpath = /var/log/monit
[webmin-auth]

Write Preview
Loading…
Cancel
Save