mailinabox/conf
anoma bb3ccdca6c Activate FAIL2BAN recidive jail
Recidive can be thought of as FAIL2BAN checking itself. This setup will monitor the FAIL2BAN log and if 10 bans are seen within one day activate a week long ban and email the mail in a box admin that it has been applied . These bans survive FAIL2BAN service restarts so are much stronger which obviously means we need to be careful with them.

Our current settings are relatively safe and definitely not easy to trigger by mistake e.g to activate a recidive IP jail by failed SSH logins a user would have to fail logging into SSH  6 times in 10 minutes, get banned, wait for the ban to expire and then repeat this process 9 further times within a single day.

The default maxretry of 5 is much saner but that can be applied once users are happy with this jail. I have been running a stronger version of this for months and it does a very good job of ejecting persistent abusers.
2015-07-06 08:53:14 +01:00
..
fail2ban Activate FAIL2BAN recidive jail 2015-07-06 08:53:14 +01:00
zpush [Z-Push] Owncloud doesnt't support CARDDAV_SUPPORTS_SYNC, so set it to false 2014-12-29 16:35:47 +01:00
ios-profile.xml the new iOS configuration profile also is used on OS X 10.10.1, see #261 2014-11-18 16:32:37 +00:00
management-initscript generate the locales before change to it. 2014-10-02 11:05:42 +00:00
mozilla-autoconfig.xml implement Mozilla (e.g. Thunderbird) autoconfiguration file 2015-01-31 21:33:18 +00:00
nginx-alldomains.conf Fixed a bug where autoconfiguration for Z-Push fails due to case of URL. 2015-06-25 11:56:33 +02:00
nginx-primaryonly.conf ownCloud updated to version 8.0.4 2015-06-14 16:04:07 +00:00
nginx-ssl.conf set ssl_stapling_verify back to on, reverts part of 47de93961e 2015-06-27 07:14:16 -04:00
nginx-top.conf put a sterner warning in nginx local.conf about not modifying it 2014-08-23 12:35:59 +00:00
nginx.conf provide redirects from www subdomains of zones to their parent domain 2015-06-04 12:19:01 +00:00
postfix_outgoing_mail_header_filters anonymize X-Pgp-Agent, Mime-Version outgoing mail headers; fixes #342 2015-05-03 14:03:59 +00:00
sieve-spam.txt Disable encapsulation of spam and marking of it as seen 2014-10-28 15:15:21 +00:00
www_default.html update default www page to link to the website, fixes #96 2014-07-07 07:07:54 -04:00