Revert to default 600 second ban time
A 60 second/1 minute ban time is not long enough to counter brute force attacks which is the main purpose of fail2ban for mail in a box. The default bantime of 10 minutes is still sane and I think we have proven fail2ban is reliable enough not to cause problems in general. It is not worth sacrificing security for the rare case where an admin locks themselves out for 10 minutes.
This commit is contained in:
parent
bfda3f40b9
commit
53d5542402
1 changed files with 0 additions and 3 deletions
|
@ -2,9 +2,6 @@
|
|||
# For Mail-in-a-Box
|
||||
[DEFAULT]
|
||||
|
||||
# bantime in seconds
|
||||
bantime = 60
|
||||
|
||||
# This should ban dumb brute-force attacks, not oblivious users.
|
||||
findtime = 30
|
||||
maxretry = 20
|
||||
|
|
Loading…
Reference in a new issue