[TYPO3-core] RFC: 6945 Log login failures with t3lib_div::syslog()
Andreas Otto
andreas.otto at dkd.de
Thu Dec 13 10:53:58 CET 2007
This is an SVN patch request.
Type: New feature
Bugtracker references:
http://bugs.typo3.org/view.php?id=6945
Branches:
trunk
Problem:
I would like to log login failures, like wrong username, wrong password
or wrong domain using t3lib_div::syslog().
This means the failures could be logged to an external logfile or the
server's syslog. Using this together with external software like
fail2ban or the like helps to keep access to your TYPO3 installation tight.
Solution:
Use t3lib_div::syslog() in typo3/sysext/sv/class.tx_sv_auth.php to log
login failures.
Notes:
Log entries will look like:
13-12-07 08:46 - Core: Login-attempt from 127.0.0.1 (), username
'dkd-otto', password not accepted!
13-12-07 08:51 - Core: Login-attempt from 127.0.0.1 (), username
'dgjkjfdskl' not found!
Fail2ban: www.fail2ban.org
Fail2ban scans log files like /var/log/pwdfail or
/var/log/apache/error_log and bans IP that makes too many password
failures. It updates firewall rules to reject the IP address.
Cheers,
Andreas
--
Amazon wishlist: <http://www.amazon.de/gp/registry/14PIOKAJCIH95>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: auth-syslog.diff
Url: http://lists.netfielders.de/pipermail/typo3-team-core/attachments/20071213/c4b9d267/attachment.txt
More information about the TYPO3-team-core
mailing list