Add fail2ban checks for roudcube

2016-03-24 14:16:57 +01:00 · 2016-03-24 14:16:57 +01:00 · 9b8d7773b9
parent 864bd988d8
commit 9b8d7773b9
3 changed files with 23 additions and 1 deletions
--- a/conf/fail2ban/jail.local
+++ b/conf/fail2ban/jail.local
@ -32,6 +32,14 @@ logpath = /var/log/syslog
 maxretry = 20
 findtime = 30

+[roundcube]
+enabled  = true
+port     = http,https
+filter   = roundcube
+logpath  = /var/log/roundcubemail/errors
+maxretry = 20
+findtime = 30
+
 [recidive]
 enabled  = true
 maxretry = 10
--- a/conf/fail2ban/roundcube.conf
+++ b/conf/fail2ban/roundcube.conf
@ -0,0 +1,14 @@
+# Fail2Ban configuration file for roundcube web server
+#
+#
+#
+
+[INCLUDES]
+
+before = common.conf
+
+[Definition]
+
+failregex = IMAP Error: Login failed for .*? from <HOST>\. AUTHENTICATE.*
+
+ignoreregex = 
--- a/setup/system.sh
+++ b/setup/system.sh
@ -233,5 +233,5 @@ cat conf/fail2ban/jail.local \
 	> /etc/fail2ban/jail.local
 cp conf/fail2ban/dovecotimap.conf /etc/fail2ban/filter.d/dovecotimap.conf
 cp conf/fail2ban/miab-management-daemon.conf /etc/fail2ban/filter.d/miab-management-daemon.conf
-
+cp conf/fail2ban/roundcube.conf /etc/fail2ban/filter.d/roundcube.conf
 restart_service fail2ban