You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Following the merge of go-gitea#16278 we need to update the fail2ban
documentation to take account of the availability of the new
sshConnectionFailed failed authentication attempt log message.
Also add a deprecation notice regarding the previous publicKeyHandler
messages, as these may be a source of false positives.
Signed-off-by: Andrew Thornton <[email protected]>
Copy file name to clipboardExpand all lines: docs/content/doc/usage/fail2ban-setup.en-us.md
+10Lines changed: 10 additions & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -29,22 +29,32 @@ on a bad authentication from the web or CLI using SSH or HTTP respectively:
29
29
```log
30
30
2020/10/15 16:05:09 modules/ssh/ssh.go:143:publicKeyHandler() [W] Failed authentication attempt from xxx.xxx.xxx.xxx
31
31
```
32
+
(DEPRECATED: This may be a false positive as the user may still go on to correctly authenticate.)
32
33
33
34
```log
34
35
2020/10/15 16:05:09 modules/ssh/ssh.go:155:publicKeyHandler() [W] Failed authentication attempt from xxx.xxx.xxx.xxx
35
36
```
37
+
(DEPRECATED: This may be a false positive as the user may still go on to correctly authenticate.)
36
38
37
39
```log
38
40
2020/10/15 16:05:09 modules/ssh/ssh.go:198:publicKeyHandler() [W] Failed authentication attempt from xxx.xxx.xxx.xxx
39
41
```
42
+
(DEPRECATED: This may be a false positive as the user may still go on to correctly authenticate.)
40
43
41
44
```log
42
45
2020/10/15 16:05:09 modules/ssh/ssh.go:213:publicKeyHandler() [W] Failed authentication attempt from xxx.xxx.xxx.xxx
43
46
```
47
+
(DEPRECATED: This may be a false positive as the user may still go on to correctly authenticate.)
44
48
45
49
```log
46
50
2020/10/15 16:05:09 modules/ssh/ssh.go:227:publicKeyHandler() [W] Failed authentication attempt from xxx.xxx.xxx.xxx
47
51
```
52
+
(DEPRECATED: This may be a false positive as the user may still go on to correctly authenticate.)
53
+
54
+
```log
55
+
2020/10/15 16:05:09 modules/ssh/ssh.go:249:sshConnectionFailed() [W] Failed authentication attempt from xxx.xxx.xxx.xxx
56
+
```
57
+
(From 1.15 this new message will available and doesn't have any of the false positive results that above messages from publicKeyHandler do. This will only be logged if the user has completely failed authentication.)
48
58
49
59
```log
50
60
2020/10/15 16:08:44 ...s/context/context.go:204:HandleText() [E] invalid credentials from xxx.xxx.xxx.xxx
0 commit comments