Update security_manager.py

This commit is contained in:
MacRimi
2026-02-12 19:15:08 +01:00
parent 2099bbe58f
commit 8fb2deeab0

View File

@@ -795,12 +795,12 @@ def apply_missing_jails():
# Create filter with journalmatch for systemd backend. # Create filter with journalmatch for systemd backend.
# With backend=systemd, fail2ban receives only the MESSAGE field # With backend=systemd, fail2ban receives only the MESSAGE field
# from the journal (without the "pvedaemon[PID]:" prefix). # from the journal (without the "pvedaemon[PID]:" prefix).
# The journalmatch already filters to pvedaemon entries. # We use _SYSTEMD_UNIT instead of _COMM because Proxmox truncates
# Optional prefix for compatibility with file-based backends. # _COMM to "pvedaemon worke" which won't match _COMM=pvedaemon.
filter_content = """[Definition] filter_content = """[Definition]
failregex = ^(pvedaemon\\[\\d+\\]:\\s+)?authentication (failure|error); rhost=<HOST> user=.* msg=.*$ failregex = ^(pvedaemon\\[\\d+\\]:\\s+)?authentication (failure|error); rhost=<HOST> user=.* msg=.*$
ignoreregex = ignoreregex =
journalmatch = _COMM=pvedaemon journalmatch = _SYSTEMD_UNIT=pvedaemon.service
""" """
with open("/etc/fail2ban/filter.d/proxmox.conf", "w") as f: with open("/etc/fail2ban/filter.d/proxmox.conf", "w") as f:
f.write(filter_content) f.write(filter_content)