View Single Post
  #3  
Old 28th November 2011, 15:51
cbj4074 cbj4074 is offline
Senior Member
 
Join Date: Nov 2010
Posts: 387
Thanks: 28
Thanked 58 Times in 50 Posts
Default

Thank you for the reply, pititis.

I tried adding that line in jail.local, and restarting fail2ban, but I am still unable to trigger a ban by failing Apache authentication.

And, technically speaking, the suggested line should already have been active due to its presence in jail.conf. As I understand it, all configuration directives from jail.conf apply until they are overridden (optionally) in jail.local. From the documentation:

Code:
# Optionally you may override any other parameter (e.g. banaction,
# action, port, logpath, etc) in that section within jail.local
Here is the relevant section of jail.conf, which I have not modified:

Code:
[apache]

enabled = false
port    = http,https
filter  = apache-auth
logpath = /var/log/apache*/*error.log
maxretry = 6
And again, the contents of jail.local:

Code:
[apache]
enabled = true
logpath = /var/log/ispconfig/httpd/*/error.log
So, the only configuration change I've made is to override the "enabled" and "logpath" values via jail.local.

Any other thoughts?

Thanks again!
Reply With Quote