Search results for query: "Fail2Ban" "recidive"

Thanks so much! I did make some minor changes today. I changed some of the bans to block all ports instead of specific. I also restarted fail2ban.. I added fail2ban in the first place because I have a high traffic site and am getting hit by these guys all day pretty much and every day. I was...

sorry... but this is a rather thoughtless remark. For longer bans, we have the "recidive jail", which definetly should have ban-times longer than a month. There is absolutely no need to have longer bans than 24 hours for the other jails, especially not, when you think about dynamic IPs, which...

Again... fail2ban really does the trick, because it constantly scans the log-files and has as well options to scan multiple log-files ( previous logs ). You just have to set a longer "findtime" and use additional "recidive" - jails with longer ban-times. For example: First jail will find the IP...

Hello, Since upgrading to 12.0.18 Update # 5 fail2ban stopped working. I did several tests but have not found the issue! [nimda4597@xxxx fail2ban]# service fail2ban status fail2ban-server (pid 1881) is running... Status |- Number of jail: 8 `- Jail list: recidive...

Hello, since my last upgrade I mention Error 502 on all domains (!) from time to time. Restarting NGINX and Apache2 solves the problem. The nginx-error-log shows: So I guess that something in the "chain" of services is broken. My first idea was that fail2ban is blocking the IP of the server...

Hi CoyoteKG, the first thing I noticed, were some common intruders, as you can see here: Jun 29 20:54:55 africka-sljiva plesk_saslauthd[25670]: No such user '[email protected]' in mail authorization database Jun 29 20:54:55 africka-sljiva plesk_saslauthd[25670]: failed mail authenticatication...

Hello, Plesk 12.5 Update #5 on CloudLinux 7.1. It seems that my Plesk firewall isn't working. I've got an attacker trying to brute force into a clients Wordpress website: 78.142.63.72 - - [16/Oct/2015:10:38:50 +1100] "POST /wp-login.php HTTP/1.0" 200 4405 "-" "-" It isn't being picked up by...

Warnings like this "WARNING 'ignoreregex' not defined in 'Definition'. Using default one: '' - - - can be ignored, because the default line in filters ( ignoreregex = ) are not essential and therefore could be left out, if the global ( default ) set is '' . Filter warnings should never be...

Be aware that all your settings used for "findtime" and "bantime" are in SECONDS. If you put "findtime = 400" it means, that only entries in the past 6,6 minutes are watched with fail2ban for the specific logs and "bantime = 4000" defines, that the ban will be removed after 66,66 minutes from...

I've activated the jails by hand in both files. But if I want to deactivate "recidive" via Plesk I get the following error: Die ausgewählten Jails können nicht ausgeschaltet werden: f2bmng failed: WARNING 'syslogsocket' not defined in 'Definition'. Using default one: 'auto' WARNING 'dbfile' not...