This manual is deprecated. Please visit https://groupoffice.readthedocs.io for the latest documentation. |
Difference between revisions of "Fail2ban"
From Group-Office Groupware and CRM Documentation
(Created page with "With fail2ban you can enhance the security of Group-Office. When a user logs in Group-Office writes log message to /home/groupoffice/log/info.log (or wherever your file_storage_p...") |
(No difference)
|
Revision as of 09:19, 30 May 2011
With fail2ban you can enhance the security of Group-Office. When a user logs in Group-Office writes log message to /home/groupoffice/log/info.log (or wherever your file_storage_path is). fail2ban analyzes this file and when someone enters a number of wrong passwords it will block the IP address using IPtables.
To install fail2ban on debian enter:
apt-get install fail2ban
Create the Group-Office script /etc/fail2ban/filter.d/group-office.conf:
# Fail2Ban configuration file # # Group-Office # [Definition] failregex = .*LOGIN FAILED for user: .* from IP: <HOST> ignoreregex =
Edit jail.conf and add:
[groupoffice] enabled = true port = http,https filter = groupoffice logpath = /home/groupoffice/log/info.log maxretry = 3