summaryrefslogtreecommitdiffstats
path: root/roles/common
diff options
context:
space:
mode:
Diffstat (limited to 'roles/common')
-rw-r--r--roles/common/files/etc/rkhunter.conf2
-rw-r--r--roles/common/templates/etc/fail2ban/jail.local.j23
2 files changed, 2 insertions, 3 deletions
diff --git a/roles/common/files/etc/rkhunter.conf b/roles/common/files/etc/rkhunter.conf
index 9a64a17..542fcfd 100644
--- a/roles/common/files/etc/rkhunter.conf
+++ b/roles/common/files/etc/rkhunter.conf
@@ -507,7 +507,7 @@ IMMUTABLE_SET=0
# The option may be specified more than once. The option
# may use wildcard characters.
#
-#ALLOWHIDDENDIR="/etc/.java"
+ALLOWHIDDENDIR="/etc/.java"
#ALLOWHIDDENDIR="/dev/.static"
#ALLOWHIDDENDIR="/dev/.SRC-unix"
ALLOWHIDDENDIR="/etc/.git"
diff --git a/roles/common/templates/etc/fail2ban/jail.local.j2 b/roles/common/templates/etc/fail2ban/jail.local.j2
index 415236f..1b157b1 100644
--- a/roles/common/templates/etc/fail2ban/jail.local.j2
+++ b/roles/common/templates/etc/fail2ban/jail.local.j2
@@ -45,9 +45,8 @@ enabled = true
# pam-generic filter can be customized to monitor specific subset of 'tty's
filter = pam-generic
# port actually must be irrelevant but lets leave it all for some possible uses
-port = all
-banaction = iptables-allports
port = anyport
+banaction = iptables-allports
logpath = /var/log/auth.log
maxretry = 6
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-22 18:37:44 +0000