Am 30.07.2020 um 21:08 schrieb Peter Heirich: > > > Am 30.07.2020 um 19:01 schrieb david: >> >> Second, I'm trying to build a report for my own use, which would show >> the current bans. Ideally, each line of the report contains: >> - IP address that is banned >> - When the ban started >> - When the ban ends (or the duration of the ban) >> - How many times the ban has been activated >> - A reason for the ban > > Do you think about something like this ? > > https://heirich.name/report/hacker2_woche.html > > >> >> That last item, "reason for the ban", wouldn't have to be completely >> accurate. It could, for example, be the important information from >> the actual log event that activated the most recent ban. >> > It based on the sqlite3 database. Lines in red color are current bans, > if directed. It's a bash script, which runs every 10 minutes by a non > privileged user. However, the usual ban is 55 hours, except some long > duration bans. > > There are some more files, like > https://heirich.name/report/hacker2_max.html > <https://heirich.name/report/hacker2_woche.html> which contains nearly > all data, but does not be able to handle smooth. It also runs about > once a week for about 40 minutes. Created whole file is about 33MB > html. This is hard work for a Webbrowser. > > Normal filesize for a week is about 500kB. I've written this as a > multi language tool, but only tested in german language, because i'm > native german. > > If mouse cursor is on date you can see the reason of ban by some > selected jails as a tooltip. However, i've supressed this for a lot of > jails to reduce filesize of generated html. > > IP-Adress is a link to a .cgi, which is protected by user/password. To > give you a idea about protected interface, see appended picture. IP's > can be unbanned, banned for a long time, banned the whole /24 net > (IPv4) or /64 präfix (IPv6, of course you need IPv6 support within > fail2ban), start verifying IP within some databases on the net like > www.abuseipdb.com > > best regards > > Peter > >
_______________________________________________ Fail2ban-users mailing list Fail2ban-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fail2ban-users
