Default change: brute_force_scan_mod_security_logs=1

Version 1.62.0


Previous default was: brute_force_scan_mod_security_logs=0 where installing mod_security would block bad requests, as normal, but the Brute Force Monitor (BFM) would not block those IPs in the firewall. This change now enables the BFM to scan for those mod_Sec entries, and will block the attacking IPs if the count is high enough. Note that mod_security filter in brute_filters.list has a divisor of 2, so if your BFM blocks at 20 failed logins, a given IP would need 40 mod_security blocks before the BFM blocks that IP. New default: brute_force_scan_mod_security_logs=1

Interested to try DirectAdmin? Get a 30-day Free Trial!