Snap Fail2Ban Config

security

#1

I see this has been asked a few times but still never really received a response.

The snap install writes logs to /var/snap/nextcloud/current/* but a normal user cannot access this directory. I don’t believe that the ordinary bruteforce protection is quite adequate so would like to configure fail2ban alongside it (benefit including SSH protection).

Is configuring Fail2Ban for the snap install as simple as changing the filter log directories to point to the snap log directory, or would this need a permission change too?