I like this feature request! As I also have pimatic running on an open IP address.
Maybe even a pimatic-fail2ban or just a ban plugin (without using fail2ban)
Pimatic and fail2ban
I like this feature request! As I also have pimatic running on an open IP address.
Maybe even a pimatic-fail2ban or just a ban plugin (without using fail2ban)
At least, pimatic should include a simple option to prevent brute force attacks, e.g. using express-brute.
"It always takes longer than you expect, even when you take into account Hofstadter's Law.", Hofstadter's Law
i have just checked the log file. at the moment no event is logged, if login failes.
pimatic + MySensors + Homeduino + z-way
https://github.com/n3roGit/MySensors_n3ro
I am not using f2b since my pi is only available in my Intranet.
If there is a logfile then it is surely possible to read it out with a logreader device.
if help is needed for evaluation leave a message at the logreader category.
https://forum.pimatic.org/category/30/logs-parsing-regex-eval
pimatic v0.9 has been released!
Support Pimatic and get some free stickers
Like us on Facebook
make it so !
@leader21 said in Pimatic and fail2ban:
If there is a logfile then it is surely possible to read it out with a logreader device.
As @n3ro said the problem appears to be that AuthFailures are not logged properly.
"It always takes longer than you expect, even when you take into account Hofstadter's Law.", Hofstadter's Law
ah ok sorry, got that wrong.
pimatic v0.9 has been released!
Support Pimatic and get some free stickers
Like us on Facebook
make it so !
Any update on this feature request?
working on solutions.
https://github.com/pimatic/pimatic/issues/999
https://forum.pimatic.org/topic/2385/bruteforce-login-failed-protection
pimatic v0.9 has been released!
Support Pimatic and get some free stickers
Like us on Facebook
make it so !
Also part of this one
https://github.com/pimatic/pimatic/issues/1002
"It always takes longer than you expect, even when you take into account Hofstadter's Law.", Hofstadter's Law
I found a workaround for myself using apache2 with fail2ban:
https://forum.pimatic.org/topic/2771/pimatic-and-fail2ban-with-apache2-proxy