lundi 19 octobre 2015

Fail2bann Sperrt zugriff auf Login

Hi Leute, habe ein kleines Problem mit Fail2bann. Und zwar Sperrt er mir alle User die z.b. auf Login zugreifen. Nur weil als eine Regel wp-login gesetzt wurde. Das WP scheint er irgendwie zu ignorieren. Ist da irgendwas falsch?

So sieht z.b. mein Filter aus

Code:
[Definition]
failregex = \[client <HOST>\] File does not exist:.*(?i)admin.*
        \[client <HOST>\] File does not exist:.*(?i)setup.*
        \[client <HOST>\] File does not exist:.*(?i)mysql.*
        \[client <HOST>\] File does not exist:.*(?i)sqlweb.*
        \[client <HOST>\] File does not exist:.*(?i)webdb.*
        \[client <HOST>\] File does not exist:.*(?i)vtigercrm.*
        \[client <HOST>\] File does not exist:.*(?i)backup.*
        \[client <HOST>\] File does not exist:.*(?i)phpmyadmin.*
        \[client <HOST>\] File does not exist:.*(?i)wordpress.*
        \[client <HOST>\] File does not exist:.*(?i)phpMyAdmin.*
        \[client <HOST>\] File does not exist:.*(?i)myadmin.*
        \[client <HOST>\] File does not exist:.*(?i)administrator.*
        \[client <HOST>\] File does not exist:.*(?i)xampp.*
        \[client <HOST>\] File does not exist:.*(?i)phpmy-admin.*
        \[client <HOST>\] File does not exist:.*(?i)websql.*
        \[client <HOST>\] File does not exist:.*(?i)blogadmin.*
        \[client <HOST>\] File does not exist:.*(?i)blog-cpanel.*
        \[client <HOST>\] File does not exist:.*(?i)cpanel.*
        \[client <HOST>\] File does not exist:.*(?i)cpphpmyadmin.*
        \[client <HOST>\] File does not exist:.*(?i)wp-login.*
        \[client <HOST>\] File does not exist:.*(?i)wplogin.*
        \[client <HOST>\] File does not exist:.*(?i)mysqldumper.*
        \[client <HOST>\] File does not exist:.*(?i)myblog.*
        \[client <HOST>\] File does not exist:.*(?i)upload.*
        \[client <HOST>\] File does not exist:.*(?i)fileupload.*
        \[client <HOST>\] File does not exist:.*(?i)wp-admin.*
        \[client <HOST>\] File does not exist:.*(?i)wp-content.*
        \[client <HOST>\] File does not exist:.*(?i)script.*
        \[client <HOST>\] File does not exist:.*(?i)backup.*
        \[client <HOST>\] File does not exist:.*(?i)dump.*
        ^<HOST>.*GET.*(?i)admin.*
        ^<HOST>.*GET.*(?i)setup.*
        ^<HOST>.*GET.*(?i)mysql.*
        ^<HOST>.*GET.*(?i)sqlweb.*
        ^<HOST>.*GET.*(?i)webdb.*
        ^<HOST>.*GET.*(?i)vtigercrm.*
        ^<HOST>.*GET.*(?i)backup.*
        ^<HOST>.*GET.*(?i)phpmyadmin.*
        ^<HOST>.*GET.*(?i)wordpress.*
        ^<HOST>.*GET.*(?i)phpMyAdmin.*
        ^<HOST>.*GET.*(?i)myadmin.*
        ^<HOST>.*GET.*(?i)administrator.*
        ^<HOST>.*GET.*(?i)xampp.*
        ^<HOST>.*GET.*(?i)php-my-admin.*
        ^<HOST>.*GET.*(?i)websql.*
        ^<HOST>.*GET.*(?i)blogadmin.*
        ^<HOST>.*GET.*(?i)blog-cpanel.*
        ^<HOST>.*GET.*(?i)cpanel.*
        ^<HOST>.*GET.*(?i)cpphpmyadmin.*
        ^<HOST>.*GET.*(?i)wp-login.*
        ^<HOST>.*GET.*(?i)wplogin.*
        ^<HOST>.*GET.*(?i)mysqldumper.*
        ^<HOST>.*GET.*(?i)myblog.*
        ^<HOST>.*GET.*(?i)upload.*
        ^<HOST>.*GET.*(?i)fileupload.*
        ^<HOST>.*GET.*(?i)wp-admin.*
        ^<HOST>.*GET.*(?i)wp-content.*
        ^<HOST>.*GET.*(?i)script.*
        ^<HOST>.*GET.*(?i)backup.*
        ^<HOST>.*GET.*(?i)dump.*
ignoreregex =
Er soll ja nur die wp-login Bots sperren und keine Normalen User die sich einfach im Forum, CMS oder was auch immer einloggen möchten.


Publié par à

Aucun commentaire:

Enregistrer un commentaire

Inscription à : Publier les commentaires (Atom)