Last active
July 24, 2025 16:28
-
-
Save luiseok/fb6d43701b17f4d1de5afa4121f21f27 to your computer and use it in GitHub Desktop.
Revisions
-
luiseok revised this gist
Sep 6, 2018 . 2 changed files with 2 additions and 2 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,5 +1,5 @@ # # File Path : /etc/fail2ban/jail.local # # Please modify the port and logpath that you configured. # This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,5 +1,5 @@ # # File Path : /etc/fail2ban/filter.d/mongo-auth.conf # # Fail2Ban filter for unsuccesfull MongoDB authentication attempts # Tested on fail2ban-client v0.9.3 -
Feb 4, 2018 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -14,4 +14,4 @@ port = 27017 banaction = iptables-multiport[name="mongo", port="27017"] bantime = 86400 findtime = 300 -
Aug 14, 2017 . 1 changed file with 2 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,4 +1,6 @@ # # File Path : fail2ban/jail.local # # Please modify the port and logpath that you configured. # -
Aug 14, 2017 .There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,15 @@ # # Please modify the port and logpath that you configured. # [mongo-auth] enabled = true filter = mongo-auth logpath = /var/log/mongodb/mongod.log maxretry = 3 port = 27017 banaction = iptables-multiport[name="mongo", port="27017"] bantime = 86400 findtine = 300 This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,30 @@ # # File Path : fail2ban/filter.d/mongo-auth.conf # # Fail2Ban filter for unsuccesfull MongoDB authentication attempts # Tested on fail2ban-client v0.9.3 # [INCLUDES] # Read common prefixes. If any customizations available -- read them from # common.local before = common.conf [Definition] _daemon = mongodb failregex = ^.*[aA]uthentication [fF]ail(ed|ure) for \w+ on \w+ from client <HOST>:[0-9].*|$ ignoreregex = # DEV Notes: # # This file is intended to prevent access to MongoDB with an incorrect account. # # Example # 2017-08-15T07:48:03.291+0900 I ACCESS [conn18] SCRAM-SHA-1 authentication failed for admin on admin from client 192.168.0.7:11696 ; UserNotFound: Could not find user admin@admin # 2017-08-15T07:57:17.752+0900 I ACCESS [conn28] SCRAM-SHA-1 authentication failed for luiseok on admin from client 192.168.0.12:53380 ; AuthenticationFailed: SCRAM-SHA-1 authentication failed, storedKey mismatch # Author: luiseok (https://github.com/luiseok)