jail.conf
[DEFAULT] | |
ignoreip = 127.0.0.1 | |
# add your own IP address from which you'll SSH beside 127.0.0.1 separating with a space | |
bantime = 600 | |
maxretry = 3 | |
backend = polling | |
destemail = root@localhost | |
action = iptables[name=%(__name__)s, port=%(port)s] | |
[sshd] | |
enabled = true | |
port = ssh | |
filter = sshd | |
logpath = /var/log/auth.log | |
maxretry = 3 | |
[vsftpd] | |
enabled = false | |
port = ftp | |
filter = vsftpd | |
logpath = /var/log/auth.log | |
maxretry = 5 | |
[proftpd] | |
enabled = true | |
port = ftp | |
filter = proftpd | |
logpath = /var/log/auth.log | |
failregex = proftpd: \(pam_unix\) authentication failure; .* rhost=<HOST> | |
maxretry = 5 | |
[wuftpd] | |
enabled = false | |
port = ftp | |
filter = wuftpd | |
logpath = /var/log/auth.log | |
maxretry = 5 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment