• Please be aware: Kaspersky Anti-Virus has been deprecated
    With the upgrade to Plesk Obsidian 18.0.64, "Kaspersky Anti-Virus for Servers" will be automatically removed from the servers it is installed on. We recommend that you migrate to Sophos Anti-Virus for Servers.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Question regex fail2ban joomla 3.5 plesk 12.5

E

ericzapata

New Pleskian
Hello,

I have a problem about writing a regex expression for Fail2Ban
I want to protect administrator access a joomla 3.5
The logs give me the following:
[Mon Jun 06 12: 33: 02.268536 2016 ] [ fcgid : warn] [ pid 3700 ] [ 217.128.126.234:43428 client] mod_fcgid : stderr : JCoulot user authentication failure , referer : http://xxxxxxxxx.com/administrator /
and I created a conf file ( joomla-error.conf ) in etc / fail2ban / filter.d /

failregex = ^ \ * \ [* . ] [client < HOST > : [0-9] + \ ] mod_fcgid : stderr . * Joomla user authentication failure , referer : . *

This does not work , could give me advice on writing the regex

thank you in advance

Eric
 
Last edited:
You must log in or register to reply here.
Back
Top