{"id":299,"date":"2019-10-26T14:35:57","date_gmt":"2019-10-26T14:35:57","guid":{"rendered":"http:\/\/www.linuxsystems.ovh\/?p=299"},"modified":"2021-10-17T13:01:11","modified_gmt":"2021-10-17T13:01:11","slug":"instalacja-i-wstepna-konfiguracja-fail2ban","status":"publish","type":"post","link":"https:\/\/www.linuxsystems.ovh\/?p=299","title":{"rendered":"Instalacja i wst\u0119pna konfiguracja fail2ban"},"content":{"rendered":"\n

Fail2ban co to jest?<\/p>\n\n\n\n

Fail2ban jest to oprogramowanie, kt\u00f3re blokuje niepo\u017c\u0105dany ruch… Np. Gdy kto\u015b b\u0119dzie pr\u00f3bowa\u0142 ponad 10 razy zalogowa\u0107 si\u0119 do naszego konta SSH, to mo\u017cemy uzna\u0107, \u017ce taka osoba (w dobie kluczy SSH) jest osob\u0105 nieuprawnion\u0105 i ten IP nale\u017cy zbanowa\u0107 na jaki\u015b czas… (np. miesi\u0105c)<\/p>\n\n\n\n\n\n\n\n

Jak zainstalowa\u0107 failban?<\/p>\n\n\n\n

Debian:<\/p>\n\n\n\n

apt install fail2ban<\/code><\/pre>\n\n\n\n
Centos:<\/p>\n\n\n\n
yum install fail2ban<\/code><\/pre>\n\n\n\n
Na obydw\u00f3ch systemach, aby uruchomi\u0107 i doda\u0107 do autostartu fail2ban nale\u017cy wykona\u0107:<\/p>\n\n\n\n
systemctl start fail2ban\nsystemctl enable fail2ban<\/code><\/pre>\n\n\n\n
Tym oto sposobem, mamy ju\u017c zainstalowany i uruchomiony fail2ban \ud83d\ude42<\/p>\n\n\n\n
Przechodzimy teraz do konfiguracji fail2ban`a:<\/p>\n\n\n\n
Kopiujemy plik \/etc\/fail2ban\/jail.conf<\/strong> do \/etc\/fail2ban\/jail.local<\/strong>, aby nie zosta\u0142 on w \u017caden spos\u00f3b nadpisany przez aktualizacje \ud83d\ude42 :<\/p>\n\n\n\n
cp \/etc\/fail2ban\/jail.conf \/etc\/fail2ban\/jail.local<\/code><\/pre>\n\n\n\n
edytujemy jail.local naszym ulubionym edytorem i mamy tam:<\/p>\n\n\n\n
bantime  = 600<\/p>\n\n\n\n
jest to ilos\u0107 sekund na ile dany host jest zbanowany ( w tym przypadku i standardowo jest to 10 minut), ja polecam to zmieni\u0107 na wi\u0119cej np. 12h<\/p>\n","protected":false},"excerpt":{"rendered":"
Fail2ban co to jest? Fail2ban jest to oprogramowanie, kt\u00f3re blokuje niepo\u017c\u0105dany ruch… Np. Gdy kto\u015b b\u0119dzie pr\u00f3bowa\u0142 ponad 10 razy zalogowa\u0107 si\u0119 do naszego konta SSH, to mo\u017cemy uzna\u0107, \u017ce taka osoba (w dobie kluczy SSH) jest osob\u0105 nieuprawnion\u0105 i ten IP nale\u017cy zbanowa\u0107 na jaki\u015b czas… (np. miesi\u0105c)<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[38],"tags":[],"class_list":["post-299","post","type-post","status-publish","format-standard","hentry","category-linux"],"_links":{"self":[{"href":"https:\/\/www.linuxsystems.ovh\/index.php?rest_route=\/wp\/v2\/posts\/299","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.linuxsystems.ovh\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.linuxsystems.ovh\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.linuxsystems.ovh\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.linuxsystems.ovh\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=299"}],"version-history":[{"count":5,"href":"https:\/\/www.linuxsystems.ovh\/index.php?rest_route=\/wp\/v2\/posts\/299\/revisions"}],"predecessor-version":[{"id":505,"href":"https:\/\/www.linuxsystems.ovh\/index.php?rest_route=\/wp\/v2\/posts\/299\/revisions\/505"}],"wp:attachment":[{"href":"https:\/\/www.linuxsystems.ovh\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=299"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.linuxsystems.ovh\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=299"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.linuxsystems.ovh\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=299"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}