Log failed login attempts
Posted: Sat Nov 10, 2012 3:59 pm
Currently if login attempt fails then there is no log. If failed attempts are logged in some file in /var/log/zm, then it will help monitor and prevent brute force attacks.
I was planning to use fail2ban to block attacker IP addresses, however I could not. Here is a temporary solution posted by one of the forum members..
http://www.zoneminder.com/forums/viewto ... t=fail2ban
This basically adds a line
in
With this, the failed logins are logged in apache error log.
The better solution will be to log the details and IP address of attacker in a zoneminder error log file.
I was planning to use fail2ban to block attacker IP addresses, however I could not. Here is a temporary solution posted by one of the forum members..
http://www.zoneminder.com/forums/viewto ... t=fail2ban
This basically adds a line
Code: Select all
error_log( "Unable to authenticate ZM web user with username '$username' and password '$password'" );
Code: Select all
"function userLogin( $username, $password="", $passwordHashed=false )".
The better solution will be to log the details and IP address of attacker in a zoneminder error log file.