Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [DEFAULT]
- ignoreip = 127.0.0.1
- fintime = 604800
- bantime = 604800
- maxretry = 3
- destemail = root@localhost
- backend = auto
- mta = sendmail
- banaction = iptables-multiport
- protocol = tcp
- chain = INPUT
- action_ = %(banaction)s[name=%(__name__)s, port="%(port)s", protocol="%(protocol)s", chain="%(chain)s"]
- action_mw = %(banaction)s[name=%(__name__)s, port="%(port)s", protocol="%(protocol)s", chain="%(chain)s"] %(mta)s-whois[name=%(__name__)s, dest="%(destemail)s", protocol="
- %(protocol)s", chain="%(chain)s"]
- action_mwl = %(banaction)s[name=%(__name__)s, port="%(port)s", protocol="%(protocol)s", chain="%(chain)s"] %(mta)s-whois-lines[name=%(__name__)s, dest="%(destemail)s", logpath=%(logpath)s, chain="%(chain)s"]
- action = %(action_)s
- [ssh]
- enabled = yes
- port = ssh
- filter = sshd
- logpath = /var/log/auth.log
- bantime = -1
- maxretry = 3
- [ssh-ddos]
- enabled = yes
- port = ssh
- filter = sshd-ddos
- logpath = /var/log/auth.log
- bantime = -1
- maxretry = 3
- [apache-noscript]
- enabled = no
- port = httpd,httpds
- filter = apache-noscript
- logpath = /var/log/apache*/*error.log
- bantime = -1
- maxretry = 3
- [apache-404]
- enabled = no
- port = httpd,httpds
- filter = apache-404
- logpath = /var/log/apache*/*error.log
- bantime = -1
- maxretry = 3
- [proftp]
- enabled = yes
- ignoreip = 192.168.1.0/24
- port = ftp,ftp-data,ftps,ftps-data
- filter = proftpd
- logpath = /var/log/proftpd/proftpd.log
- maxretry = 3
- [vsftpd]
- enabled = false
- port = ftp,ftp-data,ftps,ftps-data
- filter = vsftpd
- logpath = /var/log/vsftpd.log
- maxretry = 5
- [owncloud]
- enabled = no
- port = http,https,8443
- filter = owncloud
- logpath = /MyPath/owncloud.log
- bantime = -1
- maxretry = 3
- [nginx-404]
- enabled = no
- port = http,https
- filter = nginx-404
- logpath = /var/log/nginx*/*access*.log
- bantime = -1
- maxretry = 3
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement