psy e48014c2e0 moved from https://github.com/epsylon/Elgg-Lorea-Hydra | 6 år sedan | |
---|---|---|
.. | ||
actions | 6 år sedan | |
Readme.md | 6 år sedan | |
elgg.conf | 6 år sedan | |
manifest.xml | 6 år sedan | |
start.php | 6 år sedan |
This is a very small plugin adds Fail2Ban http://www.fail2ban.org intrusion detection hooks into Elgg.
Although Elgg has a per-user password failure lockout, this is pretty basic and doesn't protect a user from trying multiple different username/password combinations.
Fail2Ban is much more comprehensive, and will, when properly configured, block attacks from a whole IP.
[elgg]
enabled = true
filter = elgg
logpath = /var/log/auth.log
port = all