ari.lt/fail2ban
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
fail2ban/filter.d/alpine-sshd.conf
Arija A. 7138c7cf7c
 init 
Signed-off-by: Arija A. <ari@ari.lt>
2025-12-02 21:00:07 +02:00

30 lines
827 B
Text
Raw Permalink Blame History

# Fail2Ban filter for openssh for Alpine
#
# If you want to protect OpenSSH from being bruteforced by password
# authentication then get public key authentication working before disabling
# PasswordAuthentication in sshd_config.
#
[INCLUDES]
# Read common prefixes. If any customizations available -- read them from
# common.local
before = common.conf
[Definition]
_daemon = sshd-session
failregex = Failed [-/\w]+ for .* from <HOST> port \d* ssh2
sshd-session\[.*\]: Invalid user .* from <HOST> port \d*
sshd-session\[.*\]: Received disconnect from <HOST> port \d*:[0-9]+: \[preauth\]
sshd-session\[.*\]: Disconnected from invalid user .* <HOST> port \d* \[preauth\]
ignoreregex =
[Init]
# "maxlines" is number of log lines to buffer for multi-line regex searches
maxlines = 10
Reference in a new issue View git blame Copy permalink