Results 1 to 1 of 1

Thread: fail2ban config to block attacks on magento payflow endpoint

  1. April 1st, 2019 #1
    rahul.pragma
    rahul.pragma is offline First Cup of Ubuntu
    Join Date
    Apr 2019
    Beans
    1

    Exclamation fail2ban config to block attacks on magento payflow endpoint

    Hi,


    This is regarding the stopping DDoS attack on Magento payment gateway reported here:
    https://support.magento.com/hc/en-us...rding-activity

    I am trying to create the Fail2Ban rules to rate-limit the access to "/paypal/transparent/requestSecureToken/" url.

    Here are a few rules I tried but nothing works:
    fail2ban-regex.txt (Sorry, Forum doesn't allow to add the code inline due to its nature so attaching it as .txt a file)


    Here are a few lines from my apache access log:
    apache-log.txt


    Can anyone please suggest the correct Regex? This will help thousands of Magento websites to prevent the hack.

    Someone posted the solution here but it doesn't work for me because of the different apache log format:
    https://gist.github.com/digitalengin...198e1b0333219b
    Last edited by rahul.pragma; April 1st, 2019 at 01:53 PM.
    Advanced reply Adv Reply  
« Previous Thread | Next Thread »

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Ubuntu Forums Code of Conduct