Fail2ban with brute force module question

ℹ️ Support
1

Hi all

Just wondering if I have fail2ban installed on the server and configured to monitor the nc17 install, do I need the services of the brute force module within nc17?

Or do they actually provide different services for the server?

Regards

2

They did something that can learn your behaviour and then perhaps whitelist IPs. fail2ban in general blocks already at network level. However, be careful, IPs can be shared (proxies for companies, carrier-grade NAT, …)

3

The Brute-force settings app should be included in a more current NC install by default and please consult the NC 16 Docs » Apps management to always ensure to not disable the Brute-force settings app inadvertently. IMHO fail2ban cannot be an alternative to the NC brute-force app and should be understood as an additional security effort.

Please be aware the fail2ban is not just “out of the box” nor “fire and forget”. To the opposite you have to check the setup and consider your security policy.
:shield:
Usually, one has to enable certain filters in due deliberation as an educated sys admin.
:nerd_face:

Further reading:

There may be some better or some more …

Happy hacking.
:sunflower:

This is the home user forum and although you may ask freely and virtually anything, it may depend what you get answered for free. Any enterprise should ref. to Nextcloud GmbH as there shall be professional support available:

  1. Customers and Partners (mainly) closed portal — https://portal.nextcloud.com/
  2. An Enterprise Subscription from Nextcloud is available with email and phone support.

NOTE: Please be aware I am not affiliated with Nextcloud GmbH and my views are the free views as both a volunteer and a EU citizen and appear in a private capacity solely.

1 Like
4

Great, Thank you for your responses,

Thank you TP75 for the extended response and explanation.

Regards

1 Like
5

@Traffle Your are welcome.
:+1:

BTW a kind gesture like problem solved (i.e. :white_check_mark:) or a little ACK to one or more of my comments (i.e. click on the heart icon :heart:) would show you are satisfied. This could be a kind gesture and would motivate me like authors of other advice to continue in lending a hand freely…
:smiley:

1 Like
6

Done and done,

Really appreciate it.

1 Like
7

THX

Happy hacking.
:sunflower:

8

I appreciate the advice to use brute-force over fail2ban (I use both), but Nextcloud 25 says brute force is no longer supported. Is there a different module to replace, or was this overlooked?