Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
I
I
Igor Danilov2016-01-07 18:21:06
Apache HTTP Server
Igor Danilov, 2016-01-07 18:21:06

What is the correct way to write a Fail2ban filter for Joomla?

Apache2 output log like this
[Thu Jan 07 21:09:50.120651 2016] [:error] [pid 26210] [client 123.123.123.123:12878] user hgfhfg authentication failure, referer: https://example.com/administrator/ index.php
write filter Fail2ban
failregex = '^.*[[]client .*user .*authentication failure,'
Jail looks like this
[joomla-error]
enabled = true
port = http,https
filter = joomla-error
logpath = /var /log/apache2/error.log
maxretry = 3
But the filter rule doesn't work for some reason, Please tell me the solution to my problem

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
D
DayLike, 2016-10-09
@DayLike

failregex= ^.*\[.*\].*\[client\s+:.*\].*authentication\s+failure.*.php$
try this
or that
failregex= ^.*\[.*\] .*\[client :.*\].*authentication failure.*.php$
https://regex101.com/r/0tUNkO/1
It's funny that the parser does not skip the word < HOST >
dayl.ru/screen/screen_2016-10- 09_00.36.36.png

Similar questions
A
Alexosplain2015-06-19 16:33:47
How to trigger Print Preview in Internet Explorer 10+ for an iframe in a document? 1Reply
D
DenPolosin2016-09-30 15:47:44
How to open another php file on server? 2Reply
A
Albert Tobacco2014-09-30 17:15:33
How to organize .htaccess caching? 1Reply
K
kot-airplane2016-10-03 21:04:05
Logging a 500 error? 10Reply
D
denislysenko2022-04-21 22:26:06
Is a request body always needed when using the POST method? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question