How to block bots from seeking exploits on your web server with Fail2Ban

Source: Exploit scanner, secure your Apache

Steps:

sudo apt-get install fail2ban

edit /etc/fail2ban/jail.conf

[apache-nohome]
enabled = true
port    = http,https
filter  = apache-nohome
logpath = /var/log/apache*/*error.log
maxretry = 5

fix a bug in the filter /etc/fail2ban/filter.d/apache-nohome.conf
```
failregex = [[]client (?P<host>\S*)[]] File does not exist:
```
Restart /etc/init.d/fail2ban restart

Check that fail2ban has started.

 sudo fail2ban-client status
Status
|- Number of jail:      2
`- Jail list:           apache-nohome, ssh

About this entry

You’re currently reading “ How to block bots from seeking exploits on your web server with Fail2Ban ,” an entry on Chui's Counterpoint

Published:: 3.6.12 / 12pm

Category:: Engineering notes

Comments are closed

Comments are currently closed on this entry.

Comments are closed.

About

Recently

Categories

.Net (84)
Books (2)
database (21)
django (4)
Engineering notes (27)
Factor (1)
Flex (5)
General (220)
IronPython (5)
Java (44)
javafx (29)
lisp (17)
Marketing (31)
mobile (5)
MS Access (3)
Netbeans (6)
PHP (5)
Popular essays (3)
Python (98)
scheme (12)
seo (3)
Silverlight (29)
SQL Server (12)
Thinking IT (83)
Uncategorized (8)
Virtualization (8)
Web Services (11)
WinRT (2)
WPF (7)