Yes Till thats rights!
I do not contest this!
I want to share with all my try against hackers and spamers.
1.I have practice to put such addresses to my hosts.deny with this example:
ALL: 184.108.40.206: deny
2. When attack to my server is from one provider I block all as example:
220.127.116.11 or 18.104.22.168 in this case is very clear that from this address do not wait not good. Must be immediately block all from this address, etc.
ALL: 113.: deny
Usually all attack starting against SSH. In this case all times first blocker is file2ban. In my practice I immediately put this address in host.deny and Joomla sites - Ban IP Address. After than i restarting firewall and block this for ever, because those address in the hosts.deny.Well, this my tactics decrease risk and decrease my works.
Two times I was lazy ... Last before 4 days. and result is this. I need that do not more lazy.
3. I decide my problems with this my lapse with renaming this 2 email users, and renaming name user in this two sites. Good in this that this sites is my own. I not want to imagine what will be with me is site is a client!
4. Unpleasant in this story that i put this email@example.com
in Spam in all e-mails, but attack is against to one separate user in Joomla site with he e-mail address. From this all I have one question why Spam in ISPConfig don"t block this addresses?
Please, Till explain for all users ISPConfig 2. Where is mistake to be not repeat it from anybody?
Excepting of all, I want to thanks of all users who try to help my of this situation!
Thank you !