This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # fail2ban action config for csf deny / unblock IP | |
| # /etc/fail2ban/action.d/csf.conf | |
| [Definition] | |
| actionstart = | |
| actionstop = | |
| actioncheck = | |
| # to deny an IP and add to /etc/csf/csf.deny | |
| actionban = csf -d <ip> added by fail2ban for <name> |
hannesbe
/ apache-wp-login.conf
Last active
July 5, 2019 13:45
fail2ban Apache log filters for WordPress brute force login & XMLRPC attacks
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # fail2ban Apache log filter for WordPress failed logins / brute force attacks | |
| # Location in CentOS/EL7 : /etc/fail2ban/filter.d/apache-wp-login.conf | |
| [INCLUDES] | |
| before = common.conf | |
| [Definition] | |
| _daemon = wordpress | |
| failregex = ^<HOST>.*].*POST.*/wp-login\.php HTTP.* | |
| ignoreregex = |
hannesbe
/ jail.local
Last active
January 25, 2016 06:23
fail2ban jail.local to enable sshd jailn & additions for specific jails
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # fail2ban local jail config | |
| # /etc/fail2ban/jail.local | |
| # jail.conf should not be modified, put overrides to jail.conf in jail.local | |
| # enable sshd jail | |
| [sshd] | |
| enabled = true | |
| # enable recidive jail to permanently ban recidives | |
| [recidive] |
hannesbe
/ fail2ban-firewalld-install.sh
Last active
January 12, 2016 15:34
Install script fail2ban with action to firewalld | CentOS/EL 7
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # | |
| # Shell script to install & configure fail2ban with firewalld actions | |
| # Just one command to install & configure in a few seconds. | |
| # CentOS/EL7+ required. | |
| # | |
| # Run this command to execute the script in one go | |
| # curl -sSL https://gist.github.com/hannesbe/719c03d85134f8e9df5c/raw/fail2ban-firewalld-install.sh | bash -s | |
| # | |
| set -e |
hannesbe
/ fail2ban-apache-wp-jail-install.sh
Last active
January 12, 2016 14:23
Install script for a fail2ban configuration to ban brute force attacks on all Wordpress sites on Apache (Plesk supported) server-wide
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # | |
| # Shell script to configure fail2ban to ban | |
| # brute force attacks on all Wordpress sites server-wide | |
| # If fail2ban is not yet installed, it will be installed and configured first. | |
| # Apache logfiles are monitored for attacks. If you're on Plesk all vhosts' logs | |
| # are monitored as well. Plesk's integration with fail2ban is only available on Plesk 12+. | |
| # This configuration should work for any Apache or Plesk setup, as long as access logs are available. | |
| # CentOS/EL7+ required. | |
| # |
hannesbe
/ apache-wp.conf
Last active
January 14, 2016 00:39
fail2ban Apache jail for WordPress failed logins / brute force attacks
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # fail2ban Apache jail for WordPress failed logins / brute force attacks | |
| # Location in CentOS/EL7 : /etc/fail2ban/jail.d/apache-wp.conf | |
| # 86400 = 24h, 21600 = 6h, 3600 = 1h | |
| [apache-wp-xmlrpc] | |
| enabled = false | |
| filter = apache-wp-xmlrpc | |
| port = http,https | |
| logpath = /var/www/vhosts/*/logs/*access*log | |
| /var/log/httpd/*access*_log |
hannesbe
/ fail2ban-csf-install.sh
Last active
February 28, 2020 16:00
Install script fail2ban with action to csf | CentOS/EL 7
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # | |
| # Shell script to install & configure fail2ban with firewalld actions | |
| # Just one command to install & configure in a few seconds. | |
| # CentOS/EL7+ required. | |
| # | |
| # Run this command to execute the script in one go | |
| # curl -sSL https://gist.github.com/hannesbe/893476e23e637701fd88/raw/fail2ban-csf-install.sh | bash -s | |
| # | |
| set -e |
hannesbe
/ fail2ban-allstatus.sh
Created
January 14, 2016 01:33
— forked from kamermans/fail2ban-allstatus.sh
Show status of all fail2ban jails at once
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| JAILS=`fail2ban-client status | grep "Jail list" | sed -E 's/^[^:]+:[ \t]+//' | sed 's/,//g'` | |
| for JAIL in $JAILS | |
| do | |
| fail2ban-client status $JAIL | |
| done |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # | |
| # <c> Copyright 2012 SolidShellSecurity, LLC | |
| # | |
| # This program is distributed in the hope that it will be useful, | |
| # but WITHOUT ANY WARRANTY; without even the implied warranty of | |
| # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
| # GNU General Public License for more details. | |
| # |
hannesbe
/ mage-centos-fix-TLS-error.sh
Created
January 25, 2016 21:35
Quick & dirty fix for the "Unknown cipher in list: TLSv1" error in Magento 1.9.2 on CentOS. Run from Magento directory.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| sed -i '377s#.*#// $this->curlOption(CURLOPT_SSL_CIPHER_LIST, ''TLSv1'');#' downloader/lib/Mage/HTTP/Client/Curl.php |
OlderNewer