Hi Cyril,
Following this bug report:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=366112
I've decided to add this feature request to your list ;-)
Now maxfailures doesn't distinguish between different attack attempts,
so there is no difference if there is 5 unsuccessful attempts for the
same
I doubt that this wishlist should be addressed due
1. fail2ban works at the moment independently on each log line, thus it
is impossible to discriminate between multiple occasions of a single
line (which could be totally "legal") or different multiple matches.
2. xmlrpc vulnerability was fixed an
Package: fail2ban
Version: 0.6.1-1
Severity: wishlist
It would be nice to add to the Apache attacks section, the detection of the
attacks on the xmlrpc vulnerability used by Linux.Plupii.C virus
concerning the files :
/Ads/adxmlrpc.php
/a1b2c3d4e5f6g7h8i9/nonexistentfile.php
/ads/adxmlrpc.php
3 matches
Mail list logo
