Project

General

Profile

Bug #2191

not log ip when user isnt in htpasswd file

Added by eryretqwewrqr about 6 years ago. Updated about 6 years ago.

Status:
Fixed
Priority:
Normal
Assignee:
Category:
mod_auth
Target version:
Start date:
2010-04-24
Due date:
% Done:

100%

Missing in 1.5.x:
No

Description

When user inst in htpasswd then i see in log these, but should be logged with ip to track who is hammer me. Its good to use with fail2ban

(1.4.19)                       WRONG : 2010-04-24 10:46:57: (http_auth.c.865) get_password failed
(1.4.20-moded src, link below) GOOD  : 2008-12-20 10:55:29: (http_auth.c.876) get_password failed , IP: nnn.nnn.nnn.nnn

Situation is described in http://www.linuxforen.de/forums/showthread.php?t=249781

Maybe, you can check other cases, if they log ip. Thanks

Associated revisions

Revision a813273c (diff)
Added by glen about 6 years ago

- Include IP addresses on error log on password failures (fixes #2191)

git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.4.x@2727 152afb58-edef-0310-8abb-c4023f1b3aa9

Revision 2727 (diff)
Added by glen about 6 years ago

- Include IP addresses on error log on password failures (fixes #2191)

Revision 2728 (diff)
Added by glen about 6 years ago

- Include IP addresses on error log on password failures (fixes #2191)

History

#1 Updated by glen about 6 years ago

  • Status changed from New to Fixed
  • % Done changed from 0 to 100

Applied in changeset r2727.

#2 Updated by glen about 6 years ago

  • Target version set to 1.4.27

#3 Updated by glen about 6 years ago

  • Assignee set to glen

Also available in: Atom