This manual is deprecated. Please visit https://groupoffice.readthedocs.io for the latest documentation.

Fail2ban

From Group-Office Groupware and CRM Documentation
Revision as of 09:19, 30 May 2011 by Admin (Talk | contribs) (Created page with "With fail2ban you can enhance the security of Group-Office. When a user logs in Group-Office writes log message to /home/groupoffice/log/info.log (or wherever your file_storage_p...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

With fail2ban you can enhance the security of Group-Office. When a user logs in Group-Office writes log message to /home/groupoffice/log/info.log (or wherever your file_storage_path is). fail2ban analyzes this file and when someone enters a number of wrong passwords it will block the IP address using IPtables.

To install fail2ban on debian enter: 

apt-get install fail2ban

Create the Group-Office script /etc/fail2ban/filter.d/group-office.conf: 

# Fail2Ban configuration file

#

#   Group-Office

#



[Definition]



failregex = .*LOGIN FAILED for user: .* from IP: <HOST>



ignoreregex =

Edit jail.conf and add: 

[groupoffice]



enabled = true

port	= http,https

filter	= groupoffice

logpath = /home/groupoffice/log/info.log

maxretry = 3
Retrieved from "http://www.group-office.com/w/index.php?title=Fail2ban&oldid=1190"