From 4a1ebb38cdf4ce99c38d0cfcab96f0bc018d9f49 Mon Sep 17 00:00:00 2001 From: "fox.cpp" Date: Tue, 19 Nov 2019 13:34:33 +0300 Subject: [PATCH] dist: Set big bantime in fail2ban jail Typically, bots messing with email servers do so for quite a lot of time before stopping attempts so it makes sense to ban them for longer than the system default (e.g. 10 minutes on Debian). 96 hours (4 days) seems to be a reasonable compromise between size of the fail2ban DB and ban usefulness. --- dist/fail2ban/jail.d/maddy.conf | 1 + 1 file changed, 1 insertion(+) diff --git a/dist/fail2ban/jail.d/maddy.conf b/dist/fail2ban/jail.d/maddy.conf index f634d1d..9f1ccbb 100644 --- a/dist/fail2ban/jail.d/maddy.conf +++ b/dist/fail2ban/jail.d/maddy.conf @@ -2,4 +2,5 @@ enabled = true port = 993,465,25 filter = maddy +bantime = 96h backend = systemd