• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Resolved plesk wordpress jail flaw

Dork

Dork

Regular Pleskian
Server operating system version
CentOS 7
Plesk version and microupdate number
Plesk Obsidian Version 18.0.52 Update #3
The wordpress jail treats a perl script as a wordpress object
 
The Wordpress jail reacts on failed Wordpress logins. If your Perl script is named like the Wordpress login and shows a similar behavior then yes, the jail will react.
 
Peter Debik said:
The Wordpress jail reacts on failed Wordpress logins. If your Perl script is named like the Wordpress login and shows a similar behavior then yes, the jail will react.
Click to expand...
But Perl files use the extension pl and PHP files the extension php
 
I assume you mean the fail2ban jail?

The Wordpress fail2ban filter should (by default) not act on anything other than post requests to a file named wp-login.php. That being said, it depends on what your Perl script does. If it's action matches the fail2ban filter it is possible that the jail gets triggerd.

Post your fail2ban Wordpress rule and filter and an excerpt that contains access entries of the perl script from the access log if you want me to take a more in dept look.
 
Kaspar said:
I assume you mean the fail2ban jail?

The Wordpress fail2ban filter should (by default) not act on anything other than post requests to a file named wp-login.php. That being said, it depends on what your Perl script does. If it's action matches the fail2ban filter it is possible that the jail gets triggerd.

Post your fail2ban Wordpress rule and filter and an excerpt that contains access entries of the perl script from the access log if you want me to take a more in dept look.
Click to expand...
Thanks for your explaination.
It is always a get request and the f2b action came as a result of the http error code 504 (line of the errorlog file)
So I think that I can forget it.
 
You must log in or register to reply here.

Similar threads

brother4
Question Why isn't xmlrpc.php monitored by the WordPress jail in Fail2Ban?
Replies
8
Views
2K
Maarten
M
Dork
Question The new plesk jail
Replies
3
Views
559
Dork
Dork
S
Issue Filter for plesk-wordpress jail does not work, any ideas?
Replies
1
Views
796
AYamshanov
AYamshanov
L
Issue Wp Tool Kit Hopelessly Broke
Replies
4
Views
1K
Ladylinux
L
Bitpalast
Resolved Could you please explain changes to the Fail2Ban jails in 18.0.63 in more detail?
Replies
2
Views
665
Bitpalast
Bitpalast
Back
Top