>>>>> "AC" == Amir Caspi <ceph...@3phase.com> writes:
AC> Escalating bantime is a feature in v0.11. Unfortunately not AC> available in v0.10 or earlier. I have some locally updated Fedora packages for Fedora which I use here; the feature works well. I use the following settings: bantime = 6m bantime.increment = true bantime.multipliers = 1 1 10 100 1000 10000 100000 findtime = 1h maxretry = 5 This is probably far more generous than most sites would want to use, but I have a few hundred SSH/SFTP users and some of them are very prone to mistyping their passwords. Basically, five failures gets you a six minute ban. Five more failures gets you... another six minute ban. Then it goes to 60 minutes and bumps by 10x for each ban after that. AC> I'm working to implement this looping jail on my CentOS 7 + fail2ban AC> 0.9.7 system and will post back here once I get a working setup. AC> (Note that CentOS package maintainers do have v0.10 available AC> through COPR: AC> https://bugzilla.redhat.com/show_bug.cgi?id=1588026#c6) I don't think it would be terribly difficult to build my packages for EPEL7, but I know it won't work as is because I use a particular more modern packaging feature. I will see about whether I can get that into EPEL proper and if the Fedora module system ends up being supported there, we could do a module with the current development version. Of course, things would be simplified significantly if there was an actual 0.11 release. - J< _______________________________________________ Fail2ban-users mailing list Fail2ban-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fail2ban-users
