• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Question How to make fail2ban logpath aware of logs in Plesk managed domains

Z

Zoo3

Regular Pleskian
Server operating system version
CentOS 7.9
Plesk version and microupdate number
18.0.48
I'm using Nextcloud and want to set its logfile to fail2ban's logpath. But when I specify the Nextcloud log(/var/www/vhosts/MYACCOUT/nextcloud/data/nextcloud.log), fail2ban gets failed.
It seems that fail2ban can only be specified in /var/log or some other area. For example, I can't specify "/var/www/vhosts/MYACCOUT/logs/test.log" or "/var/www/vhosts/MYACCOUT/test.log" as logpath to start fail2ban.

How can I specify a directory in Plesk management to fail2ban?
 
I had forgotten about SELINUX. So it seems to be blocked. If I Permissive or disable, fail2ban works.
I mechanically set SELINUX according to the official manual.

The following is directed by it
Code: 
semanage fcontext -a -t httpd_sys_rw_content_t '/var/www/html/nextcloud/data(/.*)?'

This specifies all files under the data directory, right?
So I tried deleting only the nextcloud.log setting in the data directory.

Code: 
semanage fcontext -d '/var/www/html/nextcloud/data/nextcloud.log'
Then the error message "not defined" will appear. Of course, path is replaced with my correct information.

I want to protect the data directory itself with selinux, but only open the log file. How can I do this?
 
You must log in or register to reply here.

Similar threads

andreios
Issue Fail2ban WordPress login detection doesn't work and fail2ban couldn't be configured trough Plesk
Replies
2
Views
955
andreios
andreios
S
Resolved Problem tuning fail2ban
Replies
5
Views
10K
nisamudeen97
nisamudeen97
A
Issue Problems with fail2ban
Replies
1
Views
1K
Kaspar@Plesk
Kaspar@Plesk
wakabayashi
Resolved Fail2Ban - Postfix not working for SASL (bug?)
Replies
4
Views
1K
mizar
mizar
Bitpalast
Issue Rotation of access_ssl_log.webstat can be done, but previous access_ssl_log.webstat is restored on next day
Replies
6
Views
561
Amadex
Amadex
Back
Top