Hi,
This is regarding the stopping DDoS attack on Magento payment gateway reported here:
https://support.magento.com/hc/en-us...rding-activity
I am trying to create the Fail2Ban rules to rate-limit the access to "/paypal/transparent/requestSecureToken/" url.
Here are a few rules I tried but nothing works:
fail2ban-regex.txt (Sorry, Forum doesn't allow to add the code inline due to its nature so attaching it as .txt a file)
Here are a few lines from my apache access log:
apache-log.txt
Can anyone please suggest the correct Regex? This will help thousands of Magento websites to prevent the hack.
Someone posted the solution here but it doesn't work for me because of the different apache log format:
https://gist.github.com/digitalengin...198e1b0333219b
Bookmarks