Thanks for fail2ban which I just installed from Mandriva. I made some changes on your Wiki site.
- Your Wiki has been recently open but already (mildly) spammed because of anonymous access. Could fail2ban been used in order to temporarily ban the IP adress of the spammers? It would be great?
- Your MediaWiki software version is 1.6.7 (http://fail2ban.sourceforge.net/wiki/index.php?title=Special:Version), it doesn't enable alerts from the Watchlist by email. Shouldn't you upgrade to 1.8.2 or higher. Recent versions have new tables to prevent more from spammers.
--NBrouard 02:13, 9 January 2007 (PST)
Thank you for your contribution.
- Mmmhh... Great idea :) The problem is how to detect a spammer? Reading access_log? This website is hosted by Sourceforge. I'm not sure if I can access Apache logs.
- I really would like to upgrade to 1.8. However, the PHP version on the Sourceforge servers are still 4.x. So I have to stick to 1.6, the latest version that is working with PHP 4 :(
--Lostcontrol 14:42, 9 January 2007 (PST)
Is there is something planned about enforcing ban time ? I will take my own server for example, I've got of ssh bruteforce on it, actually from the same IP, it get banned each time, but each time for the same amout of time. It will be great to have a way to enforce ban time, ie, the first time, only 10min, the second time, 30min, the third, 1hour, and for example, the 6th time the IP get a definitive ban.
I think it should be a great thing - Godzil --126.96.36.199 13:51, 9 March 2008 (CET)