Hi,
is there a way to ban users who are trying to bruteforce drupal / wordpress or other cms installations. For fail2ban you have options but does csf has options to counter this?
Drupal / Wordpress and other cms protection
Re: Drupal / Wordpress and other cms protection
For wordpress, there is a fail2ban plugin, which will write wordpress failed logins to your system log. You can then use a custom regex in CSF/LFD to block them. Search the forums here. There is an example, specifically for this scenario, that works just fine. There is also a sticky post at the top of the forum about using custom regexes in general... very useful!
Re: Drupal / Wordpress and other cms protection
Here's the wordpress info
viewtopic.php?f=6&t=6663&p=23704
viewtopic.php?f=6&t=6663&p=23704
Re: Drupal / Wordpress and other cms protection
Found the drupal fail2ban but that's another program to do the same thing. It is possible in CSF. I saw it.
Re: Drupal / Wordpress and other cms protection
In the wordpress scenario, fail2ban is just the name of a wp plugin to write login attempts to syslog... fail2ban itself is not actually being used. Ultimately, you can point a custom regex in LFD to monitor any log you like, and act upon that.