[英]RegEx for use with fail2ban on nginx with wordpress and custom log format
我需要使用fail2ban阻止某些请求,这些请求基于nginx webserver access.log的自定义日志文件格式。
应匹配的违规行在access.log中 ,如下所示:
06/Oct/2016:18:44:29 +0200 191.96.249.53 - - mydomain.com "POST /xmlrpc.php HTTP/1.0" 499 0 "-" "Mozilla/4.0 (compatible: MSIE 7.0; Windows NT 6.0)" "-"
06/Oct/2016:18:44:29 +0200 191.96.249.53 - - mydomain.com "POST /xmlrpc.php HTTP/1.0" 499 0 "-" "Mozilla/4.0 (compatible: MSIE 7.0; Windows NT 6.0)" "-"
06/Oct/2016:18:44:29 +0200 191.96.249.53 - - mydomain.com "POST /xmlrpc.php HTTP/1.0" 499 0 "-" "Mozilla/4.0 (compatible: MSIE 7.0; Windows NT 6.0)" "-"
我的fail2ban配置wordpress-xmlrpc.conf与RegEx:
[Definition]
failregex = ^<HOST>.*POST .*.(*wp-login\.php|*xmlrpc\.php).*.(403|499)*
ignoreregex =
监狱正在运行,但从未找到违规行:
jail的状态:wordpress-xmlrpc(简化):
- 文件列表:/var/log/nginx/access.log
- 目前失败:0
- 总失败:0
- 目前被禁止:0
- 被禁止的总数:0
任何帮助表示赞赏!
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.