Sep 2 2010

Banowanie botów phpmyadmin

Eliminacja botów wyszukujących instalacje phpmyadmina do ataków brute force.

do /etc/fail2ban/filter.d/apache-auth.conf dodajemy linijki:

docroot = /var/www/htdocs|/home/www/jakasstrona.pl|/home/www/drugastrona

badadmin = PMA|phpmyadmin|myadmin|mysql|mysqladmin|sqladmin|
mypma|admin|xampp|mysqldb|mydb|db|pmadb|phpmyadmin1|phpmyadm
in2
do sekcji failregex = w tym samym pliku dodajemy linijkę:

[[]client <HOST>[]] File does not exist: (?:%(docroot)s)/(?:%(badadmin)s)

Categories Linux on September 2, 2010 by Rafał Romanowski | No Comments
Tags: , , ,

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.