On 22/12/13 04:01, François Patte wrote: > Bonjour, > > I try to configure fail2ban in order to ban IP which try to connect to > directories protected by .htaccess.
Surely you mean "try to configure fail2ban in order to ban IP addresses which repeatedly *fail* to login to a apache protected directory" Protected by .htaccess could mean:- Redirect 301 /admn/scripts/setup.php http://goatse.info/ rather than:- AuthUserFile "/somewhere/htusers" AuthType something AuthName something require valid-user Probably an English thing. Hope I've understood you correctly and you actually mean auth as opposed to redirect. > > Here is my [apache] section in jail.conf: > > enabled = true > port = http,https > filter = apache-auth > logpath = /var/log/apache*/*error.log > maxretry = 3 > > But I tested filling the auth form with erroneous login/password and > nothing happens! Nothing appeared in /var/log/fail2ban.log... Did you modify /etc/fail2ban/filter.d/apache-auth.conf? > > I tried the same for ssh connections and the IP of the computer from > which I tried was banned after the third attempt. > > What is missing in my config? Nothing. That's the correct behaviour (three strikes and out). NOTE: fail2ban only bans *IP* addresses <snipped> Refs:- man fail2ban http://www.fail2ban.org Kind regards. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/52b6bde2.6090...@gmail.com
