40815 – Using fail2ban to stop locky-style mass file modifications on shares

Bug 40815 - Using fail2ban to stop locky-style mass file modifications on shares

Summary: Using fail2ban to stop locky-style mass file modifications on shares

Status:	RESOLVED MOVED

Alias:	None

Product:	Z_wiki.univention.de
Classification:	Unclassified
Component:	Cool Solutions - other
Version:	unspecified
Hardware:	Other Linux

Importance:	P3 normal
Target Milestone:	---
Assignee:	Bugzilla Mailingliste
QA Contact:

URL:	http://www.heise.de/security/artikel/...
Keywords:

Depends on:
Blocks:

Reported:	2016-03-02 11:31 CET by Arvid Requate
Modified:	2016-09-21 18:10 CEST (History)
CC List:	2 users (show)

See Also:
What kind of report is it?:	Security Issue
What type of bug is this?:	---
Who will be affected by this bug?:	---
How will those affected feel about the bug?:	---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):	Security
Customer ID:
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Arvid Requate

2016-03-02 11:31:31 CET

We should describe how to configure Samba and fail2ban to detect and stop locky-style mass file modifications on Samba file shares. See URL for an article describing that approach.

Comment 1 Michel Smidt 2016-06-16 14:15:20 CEST

Moved to redmine #5457.