FAIL2BAN - Filter.d - http-malicious
From IT-Arts.net
Filter.d
! Should be customized to your needs !
[Definition]
# http-malicious.conf
# Malicious HTTP Methods
# Matches attempts to use HTTP methods that are often abused (e.g., TRACE, DELETE, PATCH)
failregex = ^<HOST>.*(TRACE|DELETE|PATCH).*$
ignoreregex =
Jail.conf
[http-malicious] enabled = true banaction = %(banaction_allports)s logpath = /var/log/nginx/*.access.log maxretry = 1 bantime = -1 findtime = 3d backend = polling
