Add jail rule for incorrect for phpmyadmin (hestiacp#3596)

jaapmarcus · ScIT-Raphael · web-flow · commit 90006d44cad4 · 2023-05-23T08:05:58.000+02:00
Co-authored-by: Raphael &lt;rs@scit.ch&gt;
diff --git a/install/deb/fail2ban/jail.local b/install/deb/fail2ban/jail.local
@@ -54,6 +54,13 @@ maxretry = 5
 findtime = 86400
 bantime  = 864000
 
+[phpmyadmin]
+enabled  = true
+filter   = phpmyadmin-syslog
+action   = hestia[name=WEB]
+logpath  = /var/log/auth.log
+maxretry = 5
+
 #Uncomment and add your IPs and or domains to the Whitelist
 #[DEFAULT]
 #ignoreip = 111.111.111.111 222.222.222.222 subdomain.example.tld example.tld 333.333.333.333
diff --git a/install/upgrade/versions/1.8.0.sh b/install/upgrade/versions/1.8.0.sh
@@ -29,6 +29,19 @@ if [ "$IMAP_SYSTEM" = "dovecot" ]; then
 	fi
 fi
 
+if [ -f /etc/fail2ban/jail.local ]; then
+	# Add phpmyadmin rule
+	if ! -qw "^[phpmyadmin]$" /etc/fail2ban/jail.local 2> /dev/null; then
+		echo "
+		[phpmyadmin]
+		enabled  = true
+		filter   = phpmyadmin-syslog
+		action   = hestia[name=WEB]
+		logpath  = /var/log/auth.log
+		maxretry = 5" >> /etc/fail2ban/jail.local
+	fi
+fi
+
 if [ "$MAIL_SYSTEM" = "exim4" ]; then
 	echo "[ * ] Disable SMTPUTF8 for Exim for now"
 	if grep -qw "^smtputf8_advertise_hosts =" /etc/exim4/exim4.conf.template 2> /dev/null; then
@@ -174,4 +187,4 @@ if [ "$WEB_SYSTEM" = "nginx" ] || [ "$PROXY_SYSTEM" = "nginx" ]; then
 fi
 
 unset commit nameserver nginx_conf_commit nginx_conf_compare nginx_conf_local os_release tls12_ciphers tls13_ciphers resolver
-# Finish configuring the "Enhanced and Optimized TLS" feature
+# Finish configuring the "Enhanced and Optimized TLS" feature
