majorlinux/majorwiki
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
majorwiki/02-selfhosting/security
History
Exact
MajorLinux 9e96ebb110 wiki: add wp-fail2ban logpath on Debian/Ubuntu (auth.log not syslog) 
Documents the gotcha discovered during the 2026-04-30 DCAProd XML-RPC
outage triage: wp-fail2ban plugin emits via PHP syslog(LOG_AUTH) which
lands in /var/log/auth.log on Debian/Ubuntu, not /var/log/syslog.
wordpress-{hard,soft,extra} jails configured with logpath=/var/log/syslog
(common in tutorials and ansible roles) silently catch zero events.

Article includes diagnostic steps, the fix, fail2ban-regex verification,
distro cheat sheet (Debian/Ubuntu vs RHEL/Fedora vs systemd-journal-only),
and a note on why wordpress-login is unaffected.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-04-30 05:21:50 -04:00
..
ansible-unattended-upgrades-fleet.md wiki: audit fixes — broken links, wikilinks, frontmatter, stale content (66 files) 2026-04-02 11:16:29 -04:00
clamav-fleet-deployment.md Add 5 wiki articles from 2026-04-17/18 work 2026-04-18 11:13:39 -04:00
fail2ban-apache-404-scanner-jail.md wiki: audit fixes — broken links, wikilinks, frontmatter, stale content (66 files) 2026-04-02 11:16:29 -04:00
fail2ban-apache-bad-request-jail.md Add 4 articles: nginx/apache bad-request jails, SSH fleet hardening, Watchtower localhost relay 2026-04-17 21:06:09 -04:00
fail2ban-apache-php-probe-jail.md wiki: add fail2ban jail for Apache PHP webshell probes 2026-04-13 10:17:24 -04:00
fail2ban-digest-mode-fleet.md Add wiki article: Fail2Ban Digest Mode — Fleet-Wide Quiet Alerts 2026-04-22 09:21:49 -04:00
fail2ban-nginx-bad-request-jail.md Add 4 articles: nginx/apache bad-request jails, SSH fleet hardening, Watchtower localhost relay 2026-04-17 21:06:09 -04:00
fail2ban-wordpress-login-jail.md Add wiki article: Fail2ban WordPress login brute force jail 2026-04-02 16:04:13 -04:00
firewalld-fleet-hardening.md Add 5 wiki articles from 2026-04-17/18 work 2026-04-18 11:13:39 -04:00
linux-server-hardening-checklist.md wiki: audit fixes — broken links, wikilinks, frontmatter, stale content (66 files) 2026-04-02 11:16:29 -04:00
selinux-fail2ban-execmem-fix.md wiki: audit fixes — broken links, wikilinks, frontmatter, stale content (66 files) 2026-04-02 11:16:29 -04:00
ssh-hardening-ansible-fleet.md Add 4 articles: nginx/apache bad-request jails, SSH fleet hardening, Watchtower localhost relay 2026-04-17 21:06:09 -04:00
ufw-firewall-management.md Update UFW article: add web server ports lesson from tttpod outage 2026-04-03 03:57:27 -04:00
wp-fail2ban-logpath-debian-ubuntu.md wiki: add wp-fail2ban logpath on Debian/Ubuntu (auth.log not syslog) 2026-04-30 05:21:50 -04:00