Add fail2ban filter

2016-05-22 10:28:58 +02:00 · 2016-05-22 10:28:58 +02:00 · 3caae2dee2
commit 3caae2dee2
parent 8bf132976d
2 changed files with 22 additions and 1 deletions
--- a/dynastie/views.py
+++ b/dynastie/views.py
@ -806,7 +806,10 @@ def add_comment(request, post_id, parent_id):

    # Anti robot !!
    if request.POST['email'] != '':
-        print 'fucking robot'
+        if 'HTTP_X_REAL_IP' in request.META:
+            print 'Dynastie : fucking robot %s' % (request.META['HTTP_X_REAL_IP'])
+        else:
+            print 'Dynastie : fucking robot %s' % (request.META['REMOTE_ADDR'])
        return HttpResponseRedirect(ref)

    post = Post.objects.get(pk=post_id)
--- a/misc/apache-dynastie.conf
+++ b/misc/apache-dynastie.conf
@ -0,0 +1,18 @@
+# Fail2Ban apache-dynastie filter
+#
+
+[INCLUDES]
+
+# Read common prefixes. If any customizations available -- read them from
+# apache-common.local
+before = apache-common.conf
+
+[Definition]
+
+failregex = ^\[[^]]*\] \[wsgi\:error\] \[pid [0-9]+\] Dynastie : fucking robot <HOST>$
+
+ignoreregex = 
+
+# http://indefero.soutade.fr/p/dynastie
+# [Sun May 22 10:10:33.804242 2016] [wsgi:error] [pid 10514] Dynastie : fucking robot 192.168.1.1
+# Author: Grégory Soutadé