Thank you for the reply, pititis.
I tried adding that line in jail.local
, and restarting fail2ban, but I am still unable to trigger a ban by failing Apache authentication.
And, technically speaking, the suggested line should already have been active due to its presence in jail.conf
. As I understand it, all configuration directives from jail.conf
apply until they are overridden (optionally) in jail.local
. From the documentation:
# Optionally you may override any other parameter (e.g. banaction,
# action, port, logpath, etc) in that section within jail.local
Here is the relevant section of jail.conf
, which I have not modified:
enabled = false
port = http,https
filter = apache-auth
logpath = /var/log/apache*/*error.log
maxretry = 6
And again, the contents of jail.local
enabled = true
logpath = /var/log/ispconfig/httpd/*/error.log
So, the only configuration change I've made is to override the "enabled" and "logpath" values via jail.local
Any other thoughts?